CVE-2024-46752

medium

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: replace BUG_ON() with error handling at update_ref_for_cow() Instead of a BUG_ON() just return an error, log an error message and abort the transaction in case we find an extent buffer belonging to the relocation tree that doesn't have the full backref flag set. This is unexpected and should never happen (save for bugs or a potential bad memory).

References

https://git.kernel.org/stable/c/f895db00c65e5d77c437cce946da9ec29dcdf563

https://git.kernel.org/stable/c/b56329a782314fde5b61058e2a25097af7ccb675

https://git.kernel.org/stable/c/b50857b96429a09fd3beed9f7f21b7bb7c433688

https://git.kernel.org/stable/c/41a0f85e268d72fe04f731b8ceea4748c2d65491

https://git.kernel.org/stable/c/0fbac73a97286a7ec72229cb9b42d760a2c717ac

Details

Source: Mitre, NVD

Published: 2024-09-18

Updated: 2024-09-20

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium