CVE-2024-43859
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-43859
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-43859.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-43859
- Downstream
- Related
- Published
- 2024-08-17T09:24:28.672Z
- Modified
- 2025-11-20T05:51:44.185832Z
- Summary
- f2fs: fix to truncate preallocated blocks in f2fs_file_open()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to truncate preallocated blocks in f2fsfileopen()
chenyuwen reports a f2fs bug as below:
Unable to handle kernel NULL pointer dereference at virtual address 0000000000000011 fscryptsetbiocryptctx+0x78/0x1e8 f2fsgrabreadbio+0x78/0x208 f2fssubmitpageread+0x44/0x154 f2fsgetreaddatapage+0x288/0x5f4 f2fsgetlockdatapage+0x60/0x190 truncatepartialdatapage+0x108/0x4fc f2fsdotruncateblocks+0x344/0x5f0 f2fstruncateblocks+0x6c/0x134 f2fstruncate+0xd8/0x200 f2fsiget+0x20c/0x5ac dogarbagecollect+0x5d0/0xf6c f2fsgc+0x22c/0x6a4 f2fsdisablecheckpoint+0xc8/0x310 f2fsfillsuper+0x14bc/0x1764 mountbdev+0x1b4/0x21c f2fsmount+0x20/0x30 legacygettree+0x50/0xbc vfsgettree+0x5c/0x1b0 donewmount+0x298/0x4cc pathmount+0x33c/0x5fc _arm64sysmount+0xcc/0x15c invokesyscall+0x60/0x150 el0svccommon+0xb8/0xf8 doel0svc+0x28/0xa0 el0svc+0x24/0x84 el0t64synchandler+0x88/0xec
It is because inode.icryptinfo is not initialized during below path: - mount - f2fsfillsuper - f2fsdisablecheckpoint - f2fsgc - f2fsiget - f2fs_truncate
So, let's relocate truncation of preallocated blocks to f2fsfileopen(), after fscryptfileopen().
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/298b1e4182d657c3e388adcc29477904e9600ed5
- https://git.kernel.org/stable/c/3ba0ae885215b325605ff7ebf6de12ac2adf204d
- https://git.kernel.org/stable/c/5f04969136db674f133781626e0b692c5f2bf2f0
- https://git.kernel.org/stable/c/f44a25a8bfe0c15d33244539696cd9119cf44d18
- https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd4dd19ec1ea0cf6532d65709325c42b1398614a8Fixed5f04969136db674f133781626e0b692c5f2bf2f0
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd4dd19ec1ea0cf6532d65709325c42b1398614a8Fixedf44a25a8bfe0c15d33244539696cd9119cf44d18
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd4dd19ec1ea0cf6532d65709325c42b1398614a8Fixed3ba0ae885215b325605ff7ebf6de12ac2adf204d
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedd4dd19ec1ea0cf6532d65709325c42b1398614a8Fixed298b1e4182d657c3e388adcc29477904e9600ed5
Affected versions
v5.*
v5.16
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.100
v6.1.101
v6.1.102
v6.1.103
v6.1.104
v6.1.105
v6.1.106
v6.1.107
v6.1.108
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.43
v6.1.44
v6.1.45
v6.1.46
v6.1.47
v6.1.48
v6.1.49
v6.1.5
v6.1.50
v6.1.51
v6.1.52
v6.1.53
v6.1.54
v6.1.55
v6.1.56
v6.1.57
v6.1.58
v6.1.59
v6.1.6
v6.1.60
v6.1.61
v6.1.62
v6.1.63
v6.1.64
v6.1.65
v6.1.66
v6.1.67
v6.1.68
v6.1.69
v6.1.7
v6.1.70
v6.1.71
v6.1.72
v6.1.73
v6.1.74
v6.1.75
v6.1.76
v6.1.77
v6.1.78
v6.1.79
v6.1.8
v6.1.80
v6.1.81
v6.1.82
v6.1.83
v6.1.84
v6.1.85
v6.1.86
v6.1.87
v6.1.88
v6.1.89
v6.1.9
v6.1.90
v6.1.91
v6.1.92
v6.1.93
v6.1.94
v6.1.95
v6.1.96
v6.1.97
v6.1.98
v6.1.99
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.10.1
v6.10.2
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.5
v6.5-rc1
v6.5-rc2
v6.5-rc3
v6.5-rc4
v6.5-rc5
v6.5-rc6
v6.5-rc7
v6.6
v6.6-rc1
v6.6-rc2
v6.6-rc3
v6.6-rc4
v6.6-rc5
v6.6-rc6
v6.6-rc7
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.15
v6.6.16
v6.6.17
v6.6.18
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.43
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc1
v6.7-rc2
v6.7-rc3
v6.7-rc4
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
Database specific
vanir_signatures
[
{
"deprecated": false,
"target": {
"file": "fs/f2fs/file.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"23170238215032593420932647739303426607",
"104286493744130460461770866215635433238",
"14768538786961837083284470283384053177",
"155626095316623729854277984127191963893",
"188505554921482938473763640667635610864",
"87210539437075414844905275182788599648",
"328808411799508043658919044418356054485"
]
},
"id": "CVE-2024-43859-0fe1e4ea",
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5f04969136db674f133781626e0b692c5f2bf2f0",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/f2fs.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"136581241695456742550313104056005508685",
"63839072167231304952524581561044572382",
"11655426181376017755294908718726726505",
"211813643609798201442580818467447778455"
]
},
"id": "CVE-2024-43859-4822c120",
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3ba0ae885215b325605ff7ebf6de12ac2adf204d",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/inode.c",
"function": "f2fs_iget"
},
"digest": {
"length": 2390.0,
"function_hash": "306728121416371728280643230837779841984"
},
"id": "CVE-2024-43859-4ad64988",
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5f04969136db674f133781626e0b692c5f2bf2f0",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/file.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"23170238215032593420932647739303426607",
"104286493744130460461770866215635433238",
"14768538786961837083284470283384053177",
"128538115323452052502858871493986128019",
"291096040478833485428315762602037055181",
"176469166589536786219974708617595778043",
"328808411799508043658919044418356054485"
]
},
"id": "CVE-2024-43859-5f432957",
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3ba0ae885215b325605ff7ebf6de12ac2adf204d",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/f2fs.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"136581241695456742550313104056005508685",
"63839072167231304952524581561044572382",
"11655426181376017755294908718726726505",
"211813643609798201442580818467447778455"
]
},
"id": "CVE-2024-43859-86717490",
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@298b1e4182d657c3e388adcc29477904e9600ed5",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/file.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"23170238215032593420932647739303426607",
"104286493744130460461770866215635433238",
"14768538786961837083284470283384053177",
"128538115323452052502858871493986128019",
"291096040478833485428315762602037055181",
"176469166589536786219974708617595778043",
"328808411799508043658919044418356054485"
]
},
"id": "CVE-2024-43859-a29c91a9",
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@298b1e4182d657c3e388adcc29477904e9600ed5",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/file.c",
"function": "f2fs_file_open"
},
"digest": {
"length": 342.0,
"function_hash": "157848880921844672924250492066587561753"
},
"id": "CVE-2024-43859-a7e90277",
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3ba0ae885215b325605ff7ebf6de12ac2adf204d",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/file.c",
"function": "f2fs_file_open"
},
"digest": {
"length": 342.0,
"function_hash": "157848880921844672924250492066587561753"
},
"id": "CVE-2024-43859-a7f3374c",
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@298b1e4182d657c3e388adcc29477904e9600ed5",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/inode.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"147926421930721771642743070123175221986",
"218584981728401939070785982489689722781",
"113171579419786327068422522648018983565",
"138297247562822657261859396136695702543",
"10466808574377943911982949875081138948",
"190643170371412240875424303942474433535",
"46022791077735883892289583902440472630",
"189127343746762559495272931730544620480",
"229785097017256945775018683694964771452",
"84277638972812259697503588322641987386"
]
},
"id": "CVE-2024-43859-b2e78e0f",
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3ba0ae885215b325605ff7ebf6de12ac2adf204d",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/f2fs.h"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"293686211725540094652741855454042530536",
"130165711133501496962704372535218179724",
"151963881085949898884297084843173595441",
"35132022805531075780290421355632240805"
]
},
"id": "CVE-2024-43859-c35dae7f",
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5f04969136db674f133781626e0b692c5f2bf2f0",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/file.c",
"function": "f2fs_file_open"
},
"digest": {
"length": 303.0,
"function_hash": "32556319203125130624269410623423947212"
},
"id": "CVE-2024-43859-c9336153",
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5f04969136db674f133781626e0b692c5f2bf2f0",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/inode.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"147926421930721771642743070123175221986",
"218584981728401939070785982489689722781",
"113171579419786327068422522648018983565",
"138297247562822657261859396136695702543",
"10466808574377943911982949875081138948",
"190643170371412240875424303942474433535",
"46022791077735883892289583902440472630",
"189127343746762559495272931730544620480",
"229785097017256945775018683694964771452",
"84277638972812259697503588322641987386"
]
},
"id": "CVE-2024-43859-d83fc392",
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@298b1e4182d657c3e388adcc29477904e9600ed5",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/inode.c",
"function": "f2fs_iget"
},
"digest": {
"length": 2390.0,
"function_hash": "306728121416371728280643230837779841984"
},
"id": "CVE-2024-43859-e6110d64",
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@3ba0ae885215b325605ff7ebf6de12ac2adf204d",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/inode.c",
"function": "f2fs_iget"
},
"digest": {
"length": 2390.0,
"function_hash": "306728121416371728280643230837779841984"
},
"id": "CVE-2024-43859-f1a28dc8",
"signature_type": "Function",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@298b1e4182d657c3e388adcc29477904e9600ed5",
"signature_version": "v1"
},
{
"deprecated": false,
"target": {
"file": "fs/f2fs/inode.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"147926421930721771642743070123175221986",
"218584981728401939070785982489689722781",
"113171579419786327068422522648018983565",
"138297247562822657261859396136695702543",
"10466808574377943911982949875081138948",
"190643170371412240875424303942474433535",
"46022791077735883892289583902440472630",
"189127343746762559495272931730544620480",
"229785097017256945775018683694964771452",
"84277638972812259697503588322641987386"
]
},
"id": "CVE-2024-43859-fc2801ec",
"signature_type": "Line",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@5f04969136db674f133781626e0b692c5f2bf2f0",
"signature_version": "v1"
}
]