CVE-2024-44947
fuse: Initialize beyond-EOF page contents before setting uptodate
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
In the Linux kernel, the following vulnerability has been resolved:
fuse: Initialize beyond-EOF page contents before setting uptodate
fuse_notify_store(), unlike fuse_do_readpage(), does not enable page
zeroing (because it can be used to change partial page contents).
So fuse_notify_store() must be more careful to fully initialize page
contents (including parts of the page that are beyond end-of-file)
before marking the page uptodate.
The current code can leave beyond-EOF page contents uninitialized, which
makes these uninitialized page contents visible to userspace via mmap().
This is an information leak, but only affects systems which do not
enable init-on-alloc (via CONFIG_INIT_ON_ALLOC_DEFAULT_ON=y or the
corresponding kernel command line parameter).
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2024-08-21 CVE Reserved
- 2024-09-02 CVE Published
- 2024-09-03 First Exploit
- 2024-09-05 EPSS Updated
- 2024-11-23 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-402: Transmission of Private Resources into a New Sphere ('Resource Leak')
CAPEC
References (13)
| URL | Tag | Source |
|---|---|---|
| https://git.kernel.org/stable/c/a1d75f258230b75d46aecdf28b2e732413028863 | Vuln. Introduced | |
| https://project-zero.issues.chromium.org/issues/42451729 |
| URL | Date | SRC |
|---|---|---|
| https://github.com/Abdurahmon3236/CVE-2024-44947 | 2024-09-03 |
| URL | Date | SRC |
|---|---|---|
| https://access.redhat.com/security/cve/CVE-2024-44947 | 2024-11-12 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=2309273 | 2024-11-12 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 2.6.36 < 4.19.321 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.36 < 4.19.321" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 2.6.36 < 5.4.283 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.36 < 5.4.283" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 2.6.36 < 5.10.225 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.36 < 5.10.225" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 2.6.36 < 5.15.166 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.36 < 5.15.166" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 2.6.36 < 6.1.107 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.36 < 6.1.107" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 2.6.36 < 6.6.48 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.36 < 6.6.48" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 2.6.36 < 6.10.7 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.36 < 6.10.7" | en |
Affected
| ||||||
| Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | >= 2.6.36 < 6.11 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.36 < 6.11" | en |
Affected
| ||||||