CVE-2024-38604

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2024-38604
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-38604.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-38604
Downstream
Related
Published
2024-06-19T13:48:15Z
Modified
2025-10-21T22:51:00.151404Z
Summary
block: refine the EOF check in blkdev_iomap_begin
Details

In the Linux kernel, the following vulnerability has been resolved:

block: refine the EOF check in blkdeviomapbegin

blkdeviomapbegin rounds down the offset to the logical block size before stashing it in iomap->offset and checking that it still is inside the inode size.

Check the i_size check to the raw pos value so that we don't try a zero size write if iter->pos is unaligned.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
487c607df790d366e67a7d6a30adf785cdd98e55
Fixed
910717920c8c3f9386277a44c44d448058a18084
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
487c607df790d366e67a7d6a30adf785cdd98e55
Fixed
72c54e063c32aeb38d43a2bd897821e6e5a1757d
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
487c607df790d366e67a7d6a30adf785cdd98e55
Fixed
10b723bcba8986537a484aa94dbfc9093fd776a1
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
487c607df790d366e67a7d6a30adf785cdd98e55
Fixed
0c12028aec837f5a002009bbf68d179d506510e8

Affected versions

v6.*

v6.5
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.4
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.8.1
v6.8.10
v6.8.11
v6.8.2
v6.8.3
v6.8.4
v6.8.5
v6.8.6
v6.8.7
v6.8.8
v6.8.9
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
v6.9.1
v6.9.2

Database specific

vanir_signatures

[
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@10b723bcba8986537a484aa94dbfc9093fd776a1",
        "signature_version": "v1",
        "id": "CVE-2024-38604-0cc8ab14",
        "signature_type": "Function",
        "digest": {
            "function_hash": "171155272500648048315569924893328244356",
            "length": 471.0
        },
        "deprecated": false,
        "target": {
            "function": "blkdev_iomap_begin",
            "file": "block/fops.c"
        }
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@910717920c8c3f9386277a44c44d448058a18084",
        "signature_version": "v1",
        "id": "CVE-2024-38604-23023534",
        "signature_type": "Function",
        "digest": {
            "function_hash": "171155272500648048315569924893328244356",
            "length": 471.0
        },
        "deprecated": false,
        "target": {
            "function": "blkdev_iomap_begin",
            "file": "block/fops.c"
        }
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@72c54e063c32aeb38d43a2bd897821e6e5a1757d",
        "signature_version": "v1",
        "id": "CVE-2024-38604-35d04b22",
        "signature_type": "Function",
        "digest": {
            "function_hash": "171155272500648048315569924893328244356",
            "length": 471.0
        },
        "deprecated": false,
        "target": {
            "function": "blkdev_iomap_begin",
            "file": "block/fops.c"
        }
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0c12028aec837f5a002009bbf68d179d506510e8",
        "signature_version": "v1",
        "id": "CVE-2024-38604-49a7a895",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "157222370802689540955092759741378274201",
                "236607352279480951583014009523313821435",
                "196198609151930053373600069849608158925",
                "313000309022546508196793939923601885975"
            ]
        },
        "deprecated": false,
        "target": {
            "file": "block/fops.c"
        }
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@10b723bcba8986537a484aa94dbfc9093fd776a1",
        "signature_version": "v1",
        "id": "CVE-2024-38604-a34325bc",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "157222370802689540955092759741378274201",
                "236607352279480951583014009523313821435",
                "196198609151930053373600069849608158925",
                "313000309022546508196793939923601885975"
            ]
        },
        "deprecated": false,
        "target": {
            "file": "block/fops.c"
        }
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@910717920c8c3f9386277a44c44d448058a18084",
        "signature_version": "v1",
        "id": "CVE-2024-38604-e13d8c6f",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "157222370802689540955092759741378274201",
                "236607352279480951583014009523313821435",
                "196198609151930053373600069849608158925",
                "313000309022546508196793939923601885975"
            ]
        },
        "deprecated": false,
        "target": {
            "file": "block/fops.c"
        }
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0c12028aec837f5a002009bbf68d179d506510e8",
        "signature_version": "v1",
        "id": "CVE-2024-38604-f498bdf5",
        "signature_type": "Function",
        "digest": {
            "function_hash": "171155272500648048315569924893328244356",
            "length": 471.0
        },
        "deprecated": false,
        "target": {
            "function": "blkdev_iomap_begin",
            "file": "block/fops.c"
        }
    },
    {
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@72c54e063c32aeb38d43a2bd897821e6e5a1757d",
        "signature_version": "v1",
        "id": "CVE-2024-38604-ff85efdc",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "157222370802689540955092759741378274201",
                "236607352279480951583014009523313821435",
                "196198609151930053373600069849608158925",
                "313000309022546508196793939923601885975"
            ]
        },
        "deprecated": false,
        "target": {
            "file": "block/fops.c"
        }
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.6.0
Fixed
6.6.33
Type
ECOSYSTEM
Events
Introduced
6.7.0
Fixed
6.8.12
Type
ECOSYSTEM
Events
Introduced
6.9.0
Fixed
6.9.3