CVE-2024-50065

medium

Description

In the Linux kernel, the following vulnerability has been resolved: ntfs3: Change to non-blocking allocation in ntfs_d_hash d_hash is done while under "rcu-walk" and should not sleep. __get_name() allocates using GFP_KERNEL, having the possibility to sleep when under memory pressure. Change the allocation to GFP_NOWAIT.

References

https://git.kernel.org/stable/c/d0c710372e238510db08ea01e7b8bd81ed995dd6

https://git.kernel.org/stable/c/c556e72cea2a1131ae418be017dd6fc76fffe2fb

https://git.kernel.org/stable/c/589996bf8c459deb5bbc9747d8f1c51658608103

Details

Source: Mitre, NVD

Published: 2024-10-21

Updated: 2024-11-20

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium