CVE-2024-42299

Source
https://nvd.nist.gov/vuln/detail/CVE-2024-42299
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-42299.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2024-42299
Downstream
Related
Published
2024-08-17T09:15:10Z
Modified
2025-10-07T20:27:12Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

fs/ntfs3: Update log->page{mask,bits} if log->pagesize changed

If an NTFS file system is mounted to another system with different PAGESIZE from the original system, log->pagesize will change in logreplay(), but log->page{mask,bits} don't change correspondingly. This will cause a panic because "u32 bytes = log->pagesize - pageoff" will get a negative value in the later readlogpage().

References

Affected packages