CVE-2024-36917

EPSS 0.04 % (16^th)

Advisories 19

NVD Status Awaiting Analysis

In the Linux kernel, the following vulnerability has been resolved:

block: fix overflow in blk_ioctl_discard()

There is no check for overflow of 'start + len' in blk_ioctl_discard().
Hung task occurs if submit an discard ioctl with the following param:
start = 0x80000000000ff000, len = 0x8000000000fff000;
Add the overflow validation now.

CVE Status: PUBLISHED
NVD Status: Awaiting Analysis
CNA: kernel.org
Published Date: 2024-05-30 16:15:15
(3 months ago)
Updated Date: 2024-05-30 18:18:58
(3 months ago)