THREATOPS
THREAT OPSThreat News › [NVD] CVE-2024-47736 (MEDIUM 5.5) — In the Linux kernel, the following vulnerability has been resolved: erofs: handle overlapped pclusters out of crafted images properly syzbot reported a task hang issue due to a deadlock case where it is waiting for the folio lock of a cached folio that will be used for cache I/

[NVD] CVE-2024-47736 (MEDIUM 5.5) — In the Linux kernel, the following vulnerability has been resolved: erofs: handle overlapped pclusters out of crafted images properly syzbot reported a task hang issue due to a deadlock case where it is waiting for the folio lock of a cached folio that will be used for cache I/

lownvdPublished 2024-10-21

CVE-2024-47736 CVSS: 5.5 MEDIUM Published: 2024-10-21T13:15:03.737

In the Linux kernel, the following vulnerability has been resolved:

erofs: handle overlapped pclusters out of crafted images properly

syzbot reported a task hang issue due to a deadlock case where it is waiting for the folio lock of a cached folio that will be used for cache I/Os.

After looking into the crafted fuzzed image, I

Indicators of compromise

Original source: https://nvd.nist.gov/vuln/detail/CVE-2024-47736