CVE-2024-26632

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-26632
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-26632.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-26632
Downstream
Related
Published
2024-03-18T10:07:48Z
Modified
2025-10-15T08:13:38.655975Z
Summary
block: Fix iterating over an empty bio with bio_for_each_folio_all
Details

In the Linux kernel, the following vulnerability has been resolved:

block: Fix iterating over an empty bio with bioforeachfolioall

If the bio contains no data, biofirstfolio() calls pagefolio() on a NULL pointer and oopses. Move the test that we've reached the end of the bio from bionextfolio() to biofirst_folio().

[axboe: add unlikely() to error case]

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
640d1930bef4f87ec8d8d2b05f0f6edc1dfcf662
Fixed
c6350b5cb78e9024c49eaee6fdb914ad2903a5fe
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
640d1930bef4f87ec8d8d2b05f0f6edc1dfcf662
Fixed
a6bd8182137a12d22d3f2cee463271bdcb491659
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
640d1930bef4f87ec8d8d2b05f0f6edc1dfcf662
Fixed
ca3ede3f5893e2d26d4dbdef1eec28a8487fafde
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
640d1930bef4f87ec8d8d2b05f0f6edc1dfcf662
Fixed
7bed6f3d08b7af27b7015da8dc3acf2b9c1f21d7

Affected versions

v5.*

v5.16
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8

v6.*

v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.43
v6.1.44
v6.1.45
v6.1.46
v6.1.47
v6.1.48
v6.1.49
v6.1.5
v6.1.50
v6.1.51
v6.1.52
v6.1.53
v6.1.54
v6.1.55
v6.1.56
v6.1.57
v6.1.58
v6.1.59
v6.1.6
v6.1.60
v6.1.61
v6.1.62
v6.1.63
v6.1.64
v6.1.65
v6.1.66
v6.1.67
v6.1.68
v6.1.69
v6.1.7
v6.1.70
v6.1.71
v6.1.72
v6.1.73
v6.1.74
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.2
v6.6.3
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.7.1

Database specific

{
    "vanir_signatures": [
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "target": {
                "file": "include/linux/bio.h",
                "function": "bio_next_folio"
            },
            "id": "CVE-2024-26632-0afc236c",
            "digest": {
                "length": 455.0,
                "function_hash": "102163908219902532756891385882048033442"
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7bed6f3d08b7af27b7015da8dc3acf2b9c1f21d7"
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "target": {
                "file": "include/linux/bio.h",
                "function": "bio_next_folio"
            },
            "id": "CVE-2024-26632-1af3e755",
            "digest": {
                "length": 455.0,
                "function_hash": "102163908219902532756891385882048033442"
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ca3ede3f5893e2d26d4dbdef1eec28a8487fafde"
        },
        {
            "signature_version": "v1",
            "signature_type": "Line",
            "target": {
                "file": "include/linux/bio.h"
            },
            "id": "CVE-2024-26632-2969ab49",
            "digest": {
                "line_hashes": [
                    "138025692121899345761385652977429011936",
                    "184117942759696757997582924404530992835",
                    "146062848987302507654289474677311804757",
                    "284437172116498583073682813043596617174",
                    "80200470726292752175846760954812457957",
                    "199642928093456624042212099995314961702",
                    "273138664604862382054508933651854417843",
                    "91748250778080389754144619530801356862",
                    "164425192119443587756939974136108204468",
                    "86434438279169801147094789376097336810"
                ],
                "threshold": 0.9
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7bed6f3d08b7af27b7015da8dc3acf2b9c1f21d7"
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "target": {
                "file": "include/linux/bio.h",
                "function": "bio_next_folio"
            },
            "id": "CVE-2024-26632-41e729aa",
            "digest": {
                "length": 455.0,
                "function_hash": "102163908219902532756891385882048033442"
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a6bd8182137a12d22d3f2cee463271bdcb491659"
        },
        {
            "signature_version": "v1",
            "signature_type": "Line",
            "target": {
                "file": "include/linux/bio.h"
            },
            "id": "CVE-2024-26632-46a000ce",
            "digest": {
                "line_hashes": [
                    "138025692121899345761385652977429011936",
                    "184117942759696757997582924404530992835",
                    "146062848987302507654289474677311804757",
                    "284437172116498583073682813043596617174",
                    "80200470726292752175846760954812457957",
                    "199642928093456624042212099995314961702",
                    "273138664604862382054508933651854417843",
                    "91748250778080389754144619530801356862",
                    "164425192119443587756939974136108204468",
                    "86434438279169801147094789376097336810"
                ],
                "threshold": 0.9
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c6350b5cb78e9024c49eaee6fdb914ad2903a5fe"
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "target": {
                "file": "include/linux/bio.h",
                "function": "bio_next_folio"
            },
            "id": "CVE-2024-26632-4d8cd51e",
            "digest": {
                "length": 455.0,
                "function_hash": "102163908219902532756891385882048033442"
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c6350b5cb78e9024c49eaee6fdb914ad2903a5fe"
        },
        {
            "signature_version": "v1",
            "signature_type": "Line",
            "target": {
                "file": "include/linux/bio.h"
            },
            "id": "CVE-2024-26632-559cd53f",
            "digest": {
                "line_hashes": [
                    "138025692121899345761385652977429011936",
                    "184117942759696757997582924404530992835",
                    "146062848987302507654289474677311804757",
                    "284437172116498583073682813043596617174",
                    "80200470726292752175846760954812457957",
                    "199642928093456624042212099995314961702",
                    "273138664604862382054508933651854417843",
                    "91748250778080389754144619530801356862",
                    "164425192119443587756939974136108204468",
                    "86434438279169801147094789376097336810"
                ],
                "threshold": 0.9
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ca3ede3f5893e2d26d4dbdef1eec28a8487fafde"
        },
        {
            "signature_version": "v1",
            "signature_type": "Line",
            "target": {
                "file": "include/linux/bio.h"
            },
            "id": "CVE-2024-26632-7a9ab2ee",
            "digest": {
                "line_hashes": [
                    "138025692121899345761385652977429011936",
                    "184117942759696757997582924404530992835",
                    "146062848987302507654289474677311804757",
                    "284437172116498583073682813043596617174",
                    "80200470726292752175846760954812457957",
                    "199642928093456624042212099995314961702",
                    "273138664604862382054508933651854417843",
                    "91748250778080389754144619530801356862",
                    "164425192119443587756939974136108204468",
                    "86434438279169801147094789376097336810"
                ],
                "threshold": 0.9
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a6bd8182137a12d22d3f2cee463271bdcb491659"
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "target": {
                "file": "include/linux/bio.h",
                "function": "bio_first_folio"
            },
            "id": "CVE-2024-26632-87dc3de1",
            "digest": {
                "length": 475.0,
                "function_hash": "220811977262102250368551161651715893938"
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a6bd8182137a12d22d3f2cee463271bdcb491659"
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "target": {
                "file": "include/linux/bio.h",
                "function": "bio_first_folio"
            },
            "id": "CVE-2024-26632-aa479484",
            "digest": {
                "length": 475.0,
                "function_hash": "220811977262102250368551161651715893938"
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c6350b5cb78e9024c49eaee6fdb914ad2903a5fe"
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "target": {
                "file": "include/linux/bio.h",
                "function": "bio_first_folio"
            },
            "id": "CVE-2024-26632-b7cd346e",
            "digest": {
                "length": 475.0,
                "function_hash": "220811977262102250368551161651715893938"
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@7bed6f3d08b7af27b7015da8dc3acf2b9c1f21d7"
        },
        {
            "signature_version": "v1",
            "signature_type": "Function",
            "target": {
                "file": "include/linux/bio.h",
                "function": "bio_first_folio"
            },
            "id": "CVE-2024-26632-f6829476",
            "digest": {
                "length": 475.0,
                "function_hash": "220811977262102250368551161651715893938"
            },
            "deprecated": false,
            "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ca3ede3f5893e2d26d4dbdef1eec28a8487fafde"
        }
    ]
}

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.17.0
Fixed
6.1.75
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.6.14
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.7.2