CVE-2024-41086
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-41086
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-41086.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-41086
- Downstream
- Published
- 2024-07-29T15:48:02.175Z
- Modified
- 2025-12-05T05:49:49.540559Z
- Summary
- bcachefs: Fix sb_field_downgrade validation
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
bcachefs: Fix sbfielddowngrade validation
bch2sbdowngrade_validate() wasn't checking for a downgrade entry extending past the end of the superblock section
foreachdowngradeentry() is used in totext() and needs to work on malformed input; it also was missing a check for a field extending past the end of the section
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/41xxx/CVE-2024-41086.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/692aa7a54b2b28d59f24b3bf8250837805484b99
- https://git.kernel.org/stable/c/bf920ed92ef24dcd6970c88881cd4700b3acf05b
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/41xxx/CVE-2024-41086.json
- https://nvd.nist.gov/vuln/detail/CVE-2024-41086