CVE-2024-35807

Updated:

Description:

In the Linux kernel, the following vulnerability has been resolved: ext4: fix corruption during on-line resize We observed a corruption during on-line resize of a file system that is larger than 16 TiB with 4k block size. With having more then 2^32 blocks resize_inode is turned off by default by mke2fs. The issue can be reproduced on a smaller file system for convenience by explicitly turning off resize_inode. An on-line resize across an 8 GiB boundary (the size of a meta block group in this setup) then leads to a corruption: dev=/dev/<some_dev> # should be >= 16 GiB mkdir -p /corruption /sbin/mke2fs -t ext4 -b 4096 -O ^resize_inode $dev $((2 * 2**21 - 2**15)) mount -t ext4 $dev /corruption dd if=/dev/zero bs=4096 of=/corruption/test count=$((2*2**21 - 4*2**15)) sha1sum /corruption/test # 79d2658b39dcfd77274e435b0934028adafaab11 /corruption/test /sbin/resize2fs $dev $((2*2**21)) # drop page cache to force reload the block from disk echo 1 > /proc/sys/vm/drop_caches sha1sum /corruption/test # 3c2abc63cbf1a94c9e6977e0fbd72cd832c4d5c3 /corruption/test 2^21 = 2^15*2^6 equals 8 GiB whereof 2^15 is the number of blocks per block group and 2^6 are the number of block groups that make a meta block group. The last checksum might be different depending on how the file is laid out across the physical blocks. The actual corruption occurs at physical block 63*2^15 = 2064384 which would be the location of the backup of the meta block group's block descriptor. During the on-line resize the file system will be converted to meta_bg starting at s_first_meta_bg which is 2 in the example - meaning all block groups after 16 GiB. However, in ext4_flex_group_add we might add block groups that are not part of the first meta block group yet. In the reproducer we achieved this by substracting the size of a whole block group from the point where the meta block group would start. This must be considered when updating the backup block group descriptors to follow the non-meta_bg layout. The fix is to add a test whether the group to add is already part of the meta block group or not.

CVSS3: 5.5


Vendor State

OS Vendor version Errata
Amazon Linux 2 4.14.336-257.566.amzn2 ALAS-2024-2633
RHEL 8 4.18.0-553.16.1.el8_10 RHSA-2024:5101
Debian 10 4.19.316-1 DLA-3840-1
Oracle Linux 8 4.18.0-553.16.1.el8_10 ELSA-2024-5101
Debian 10 cloud 4.19.316-1 DLA-3840-1
Ubuntu 20.04 5.4.0-189.209 USN-6896-1
Ubuntu 20.04 AWS 5.4.0-1128.138 USN-6896-5
AlmaLinux 8 4.18.0-553.16.1.el8_10 ALSA-2024:5101
Ubuntu 20.04 Azure 5.4.0-1133.140 USN-6896-1
Rocky Linux 8 4.18.0-553.16.1.el8_10 RLSA-2024:5101
Ubuntu 22.04 5.15.0-116.126 USN-6898-1
Ubuntu 22.04 AWS 5.15.0-1065.71 USN-6898-3
Ubuntu 22.04 Azure 5.15.0-1068.77 USN-6917-1
RHEL 9 5.14.0-503.11.1.el9_5 RHSA-2024:9315
Ubuntu 20.04 HWE Azure 5.15.0-1068.77~20.04.1 USN-6917-1
Ubuntu 20.04 GCP 5.4.0-1132.141 USN-6896-1
Amazon Linux 2 5.10 5.10.210-201.855.amzn2 ALASKERNEL-5.10-2024-073
Amazon Linux 2023 6.1.79-99.167.amzn2023 ALAS-2024-715
Ubuntu 24.04 6.8.0-35.35 USN-6816-1

KernelCare State

OS Original kernel version State
Amazon Linux 2
4.14.121-109.96.amzn2 show all hide all
4.14.106-97.85.amzn2 4.14.104-95.84.amzn2 4.14.114-103.97.amzn2 4.14.101-91.76.amzn2 4.14.133-113.105.amzn2 4.14.146-119.123.amzn2 4.14.114-105.126.amzn2 4.14.123-111.109.amzn2 4.14.133-113.112.amzn2 4.14.152-127.182.amzn2 4.14.67-71.56.amzn2 4.14.42-61.37.amzn2 4.14.33-59.34.amzn2 4.14.77-80.57.amzn2 4.14.62-70.117.amzn2 4.14.88-88.76.amzn2 4.14.88-88.73.amzn2 4.14.72-73.55.amzn2 4.14.94-89.73.amzn2 4.14.51-66.38.amzn2 4.14.154-128.181.amzn2 4.14.128-112.105.amzn2 4.14.26-54.32.amzn2 4.14.70-72.55.amzn2 4.14.97-90.72.amzn2 4.14.165-131.185.amzn2 4.14.143-118.123.amzn2 4.14.146-120.181.amzn2 4.14.152-124.171.amzn2 4.14.109-99.92.amzn2 4.14.171-136.231.amzn2 4.14.158-129.185.amzn2 4.14.165-133.209.amzn2 4.14.173-137.228.amzn2 4.14.177-139.254.amzn2 4.14.173-137.229.amzn2 4.14.177-139.253.amzn2 4.14.181-140.257.amzn2 4.14.186-146.268.amzn2 4.14.181-142.260.amzn2 4.14.192-147.314.amzn2 4.14.193-149.317.amzn2 4.14.198-152.320.amzn2 4.14.200-155.322.amzn2 4.14.203-156.332.amzn2 4.14.209-160.335.amzn2 4.14.214-160.339.amzn2 4.14.209-160.339.amzn2 4.14.219-161.340.amzn2 4.14.225-168.357.amzn2 4.14.231-173.360.amzn2 4.14.219-164.354.amzn2 4.14.225-169.362.amzn2 4.14.232-176.381.amzn2 4.14.232-177.418.amzn2 4.14.238-182.421.amzn2 4.14.238-182.422.amzn2 4.14.231-173.361.amzn2 4.14.241-184.433.amzn2 4.14.243-185.433.amzn2 4.14.246-187.474.amzn2 4.14.248-189.473.amzn2 4.14.252-195.481.amzn2 4.14.252-195.483.amzn2 4.14.256-197.484.amzn2 4.14.262-200.489.amzn2 4.14.268-205.500.amzn2 4.14.273-207.502.amzn2 4.14.275-207.503.amzn2 4.14.276-211.499.amzn2 4.14.281-212.502.amzn2 4.14.285-215.501.amzn2 4.14.287-215.504.amzn2 4.14.290-217.505.amzn2 4.14.291-218.527.amzn2 4.14.294-220.533.amzn2 4.14.296-222.539.amzn2 4.14.299-223.520.amzn2 4.14.301-224.520.amzn2 4.14.304-226.531.amzn2 4.14.301-225.528.amzn2 4.14.309-231.529.amzn2 4.14.305-227.531.amzn2 4.14.313-235.533.amzn2 4.14.314-237.533.amzn2 4.14.314-238.539.amzn2 4.14.318-240.529.amzn2 4.14.318-241.531.amzn2 4.14.320-242.534.amzn2 4.14.320-243.544.amzn2 4.14.322-244.536.amzn2 4.14.311-233.529.amzn2 4.14.322-244.539.amzn2 4.14.326-245.539.amzn2 4.14.327-246.539.amzn2 4.14.328-248.540.amzn2 4.14.322-246.539.amzn2 4.14.330-250.540.amzn2 4.14.334-252.552.amzn2 4.14.336-253.554.amzn2 4.14.336-255.557.amzn2 4.14.336-256.559.amzn2 4.14.336-257.562.amzn2 4.14.336-256.557.amzn2
Released
RHEL 8
4.18.0-147.el8 show all hide all
4.18.0-80.11.1.el8_0 4.18.0-80.4.2.el8_0 4.18.0-80.11.2.el8_0 4.18.0-80.7.2.el8_0 4.18.0-80.7.1.el8_0 4.18.0-147.0.2.el8_1 4.18.0-80.1.2.el8_0 4.18.0-147.0.3.el8_1 4.18.0-80.el8 4.18.0-147.5.1.el8_1 4.18.0-147.3.1.el8_1 4.18.0-147.8.1.el8_1 4.18.0-193.el8 4.18.0-193.1.2.el8_2 4.18.0-193.6.3.el8_2 4.18.0-193.13.2.el8_2 4.18.0-193.14.3.el8_2 4.18.0-193.19.1.el8_2 4.18.0-193.28.1.el8_2 4.18.0-240.el8 4.18.0-240.1.1.el8_3 4.18.0-240.8.1.el8_3 4.18.0-240.10.1.el8_3 4.18.0-240.15.1.el8_3 4.18.0-240.22.1.el8_3 4.18.0-305.el8 4.18.0-304.el8 4.18.0-305.3.1.el8_4 4.18.0-305.7.1.el8_4 4.18.0-305.10.2.el8_4 4.18.0-305.12.1.el8_4 4.18.0-305.17.1.el8_4 4.18.0-305.19.1.el8_4 4.18.0-305.25.1.el8_4 4.18.0-348.el8 4.18.0-348.2.1.el8_5 4.18.0-348.7.1.el8_5 4.18.0-348.12.2.el8_5 4.18.0-348.20.1.el8_5 4.18.0-372.9.1.el8 4.18.0-348.23.1.el8_5 4.18.0-372.13.1.el8_6 4.18.0-372.16.1.el8_6 4.18.0-372.19.1.el8_6 4.18.0-372.26.1.el8_6 4.18.0-372.32.1.el8_6 4.18.0-425.3.1.el8 4.18.0-425.10.1.el8_7 4.18.0-425.13.1.el8_7 4.18.0-425.19.2.el8_7 4.18.0-477.10.1.el8_8 4.18.0-477.13.1.el8_8 4.18.0-477.15.1.el8_8 4.18.0-477.21.1.el8_8 4.18.0-477.27.1.el8_8 4.18.0-513.5.1.el8_9 4.18.0-513.9.1.el8_9 4.18.0-513.11.1.el8_9 4.18.0-513.18.1.el8_9 4.18.0-513.24.1.el8_9 4.18.0-553.el8_10 4.18.0-553.5.1.el8_10 4.18.0-553.8.1.el8_10
Released
Debian 10
Planned
Oracle Linux 8
4.18.0-147.el8 show all hide all
4.18.0-80.11.1.el8_0 4.18.0-80.4.2.el8_0 4.18.0-147.5.1.el8_1 4.18.0-80.11.2.el8_0 4.18.0-80.7.2.el8_0 4.18.0-80.7.1.el8_0 4.18.0-147.0.2.el8_1 4.18.0-80.1.2.el8_0 4.18.0-147.0.3.el8_1 4.18.0-147.3.1.el8_1 4.18.0-80.el8 4.18.0-147.8.1.el8_1 4.18.0-193.1.2.el8_2 4.18.0-193.el8 4.18.0-193.6.3.el8_2 4.18.0-193.13.2.el8_2 4.18.0-193.14.3.el8_2 4.18.0-193.19.1.el8_2 4.18.0-193.28.1.el8_2 4.18.0-240.el8 4.18.0-240.1.1.el8_3 4.18.0-240.8.1.el8_3 4.18.0-240.10.1.el8_3 4.18.0-240.15.1.el8_3 4.18.0-240.22.1.el8_3 4.18.0-305.el8 4.18.0-305.3.1.el8_4 4.18.0-305.7.1.el8_4 4.18.0-305.10.2.el8_4 4.18.0-305.12.1.el8_4 4.18.0-305.17.1.el8_4 4.18.0-305.19.1.el8_4 4.18.0-305.25.1.el8_4 4.18.0-348.el8 4.18.0-348.2.1.el8_5 4.18.0-348.7.1.el8_5 4.18.0-348.12.2.el8_5 4.18.0-348.20.1.el8_5 4.18.0-348.23.1.el8_5 4.18.0-372.9.1.el8 4.18.0-372.13.1.0.1.el8_6 4.18.0-372.16.1.0.1.el8_6 4.18.0-372.19.1.0.1.el8_6 4.18.0-372.26.1.0.1.el8_6 4.18.0-372.32.1.0.1.el8_6 4.18.0-425.3.1.el8 4.18.0-425.10.1.el8_7 4.18.0-425.13.1.el8_7 4.18.0-425.19.2.el8_7 4.18.0-477.10.1.el8_8 4.18.0-477.13.1.el8_8 4.18.0-477.15.1.el8_8 4.18.0-477.21.1.el8_8 4.18.0-477.27.0.1.el8_8 4.18.0-477.27.1.el8_8 4.18.0-513.5.1.el8_9 4.18.0-513.9.1.el8_9 4.18.0-513.11.0.1.el8_9 4.18.0-513.18.0.1.el8_9 4.18.0-513.18.0.2.el8_9 4.18.0-513.18.1.el8_9 4.18.0-513.18.1.0.1.el8_9 4.18.0-513.24.1.el8_9 4.18.0-553.el8_10 4.18.0-553.5.1.el8_10 4.18.0-553.8.1.el8_10
Released
CloudLinux OS 8
4.18.0-147.3.1.el8.lve.1 show all hide all
4.18.0-147.8.1.el8.lve 4.18.0-147.0.3.lve.el8 4.18.0-147.8.1.el8.lve.1 4.18.0-193.28.1.lve1.el8 4.18.0-305.lve.el8 4.18.0-305.7.1.lve.el8 4.18.0-305.10.2.lve.el8 4.18.0-305.10.2.2.lve.el8 4.18.0-305.12.1.lve.el8 4.18.0-305.17.1.lve.el8 4.18.0-305.19.1.lve.el8 4.18.0-348.lve.el8 4.18.0-348.7.1.lve.el8 4.18.0-348.12.2.lve.el8 4.18.0-348.20.1.lve.1.el8 4.18.0-348.20.1.lve.el8 4.18.0-348.23.1.lve.el8 4.18.0-372.9.1.1.lve.el8 4.18.0-372.16.1.lve.el8 4.18.0-372.9.1.lve.el8 4.18.0-372.19.1.lve.el8 4.18.0-372.13.1.lve.el8 4.18.0-372.26.1.lve.1.el8 4.18.0-372.32.1.lve.el8 4.18.0-425.3.1.lve.1.el8 4.18.0-425.3.1.lve.el8 4.18.0-425.3.1.lve.2.el8 4.18.0-425.3.1.lve.3.el8 4.18.0-425.10.1.lve.el8 4.18.0-425.13.1.lve.el8 4.18.0-425.19.2.lve.el8 4.18.0-477.10.1.lve.el8 4.18.0-477.13.1.lve.el8 4.18.0-477.15.1.lve.2.el8 4.18.0-477.13.1.lve.1.el8 4.18.0-477.21.1.lve.el8 4.18.0-477.21.1.lve.1.el8 4.18.0-477.27.1.lve.el8 4.18.0-477.27.2.lve.el8 4.18.0-513.5.1.lve.el8 4.18.0-513.9.1.lve.el8 4.18.0-513.11.1.lve.el8 4.18.0-513.18.1.lve.el8 4.18.0-513.18.1.lve.2.el8 4.18.0-513.18.1.lve.1.el8 4.18.0-513.24.1.lve.el8 4.18.0-513.24.1.lve.1.el8 4.18.0-553.lve.el8 4.18.0-513.24.1.lve.2.el8 4.18.0-553.5.1.lve.el8 4.18.0-544.lve.el8 4.18.0-553.5.1.lve.1.el8 4.18.0-553.8.1.lve.el8
Released
CloudLinux OS 7h
4.18.0-147.0.3.el7h.lve show all hide all
4.18.0-147.0.3.el7h 4.18.0-147.3.1.el7h.lve.1 4.18.0-147.8.1.el7h.lve 4.18.0-80.7.2.el7h 4.18.0-147.8.1.el7h.lve.1 4.18.0-193.28.1.lve1.el7h 4.18.0-305.lve.el7h 4.18.0-305.7.1.lve.el7h 4.18.0-305.10.2.lve.el7h 4.18.0-305.10.2.2.lve.el7h 4.18.0-305.12.1.lve.el7h 4.18.0-305.17.1.lve.el7h 4.18.0-305.19.1.lve.el7h 4.18.0-348.7.1.lve.el7h 4.18.0-348.12.2.lve.el7h 4.18.0-348.lve.el7h 4.18.0-348.12.2.lve.1.el7h 4.18.0-348.12.2.lve.2.el7h 4.18.0-348.20.1.lve.el7h 4.18.0-348.20.1.lve.1.el7h 4.18.0-348.23.1.lve.el7h 4.18.0-372.9.1.lve.el7h 4.18.0-372.13.1.lve.el7h 4.18.0-372.16.1.lve.el7h 4.18.0-372.19.1.lve.el7h 4.18.0-372.26.1.lve.1.el7h 4.18.0-372.32.1.lve.el7h 4.18.0-425.3.1.lve.el7h 4.18.0-425.3.1.lve.1.el7h 4.18.0-425.3.1.lve.2.el7h 4.18.0-425.3.1.lve.3.el7h 4.18.0-425.10.1.lve.el7h 4.18.0-425.13.1.lve.el7h 4.18.0-425.19.2.lve.el7h 4.18.0-477.10.1.lve.1.el7h 4.18.0-477.13.1.lve.el7h 4.18.0-477.15.1.lve.1.el7h 4.18.0-477.21.1.lve.el7h 4.18.0-477.13.1.lve.1.el7h 4.18.0-477.27.1.lve.el7h 4.18.0-477.15.1.lve.2.el7h 4.18.0-477.21.1.lve.1.el7h 4.18.0-513.5.1.lve.el7h 4.18.0-477.27.2.lve.el7h 4.18.0-513.9.1.lve.el7h 4.18.0-513.11.1.lve.el7h 4.18.0-513.18.1.lve.el7h 4.18.0-513.11.1.lve.1.el7h 4.18.0-513.18.1.lve.2.el7h 4.18.0-513.18.1.lve.1.el7h 4.18.0-513.24.1.lve.el7h 4.18.0-553.lve.el7h 4.18.0-513.24.1.lve.1.el7h 4.18.0-513.24.1.lve.2.el7h 4.18.0-553.5.1.lve.el7h 4.18.0-553.8.1.lve.el7h 4.18.0-553.5.1.lve.1.el7h
Released
Debian 10 cloud
Planned
Ubuntu 20.04
In Progress
Ubuntu 20.04 AWS
Planned
AlmaLinux 8
4.18.0-240.el8 show all hide all
4.18.0-240.15.1.el8_3 4.18.0-240.22.1.el8_3 4.18.0-305.el8 4.18.0-305.3.1.el8_4 4.18.0-305.7.1.el8_4 4.18.0-305.10.2.el8_4 4.18.0-305.12.1.el8_4 4.18.0-305.17.1.el8_4 4.18.0-305.19.1.el8_4 4.18.0-305.25.1.el8_4 4.18.0-348.el8 4.18.0-348.2.1.el8_5 4.18.0-348.7.1.el8_5 4.18.0-348.12.2.el8_5 4.18.0-348.20.1.el8_5 4.18.0-348.20.1.el8.fscrypt 4.18.0-348.23.1.el8_5 4.18.0-372.9.1.el8 4.18.0-372.13.1.el8_6 4.18.0-372.19.1.el8_6 4.18.0-372.16.1.el8_6 4.18.0-372.26.1.el8_6 4.18.0-372.32.1.el8_6 4.18.0-425.3.1.el8 4.18.0-425.10.1.el8_7 4.18.0-425.13.1.el8_7 4.18.0-425.19.2.el8_7 4.18.0-477.10.1.el8_8 4.18.0-477.13.1.el8_8 4.18.0-477.15.1.el8_8 4.18.0-477.21.1.el8_8 4.18.0-477.27.1.el8_8 4.18.0-513.5.1.el8_9 4.18.0-513.9.1.el8_9 4.18.0-477.27.2.el8_8 4.18.0-513.11.1.el8_9 4.18.0-513.18.1.el8_9 4.18.0-513.24.1.el8_9 4.18.0-513.18.2.el8_9 4.18.0-553.el8_10 4.18.0-553.5.1.el8_10 4.18.0-553.8.1.el8_10
Released
Ubuntu 20.04 Azure
In Progress
Rocky Linux 8
4.18.0-305.3.1.el8_4 show all hide all
4.18.0-305.7.1.el8_4 4.18.0-305.10.2.el8_4 4.18.0-305.12.1.el8_4 4.18.0-305.17.1.el8_4 4.18.0-305.19.1.el8_4 4.18.0-305.25.1.el8_4 4.18.0-348.2.1.el8_5 4.18.0-348.12.2.el8_5 4.18.0-348.20.1.el8_5 4.18.0-348.7.1.el8_5 4.18.0-348.23.1.el8_5 4.18.0-372.9.1.el8 4.18.0-372.13.1.el8_6 4.18.0-372.19.1.el8_6 4.18.0-372.16.1.el8_6 4.18.0-372.16.1.el8_6.0.1 4.18.0-372.26.1.el8_6 4.18.0-372.32.1.el8_6 4.18.0-425.3.1.el8 4.18.0-425.10.1.el8_7 4.18.0-425.13.1.el8_7 4.18.0-425.19.2.el8_7 4.18.0-477.10.1.el8_8 4.18.0-477.13.1.el8_8 4.18.0-477.15.1.el8_8 4.18.0-477.27.1.el8_8 4.18.0-477.21.1.el8_8 4.18.0-513.5.1.el8_9 4.18.0-513.9.1.el8_9 4.18.0-513.11.1.el8_9 4.18.0-513.18.1.el8_9 4.18.0-513.11.1.el8_9.0.1 4.18.0-513.24.1.el8_9 4.18.0-553.el8_10 4.18.0-553.5.1.el8_10 4.18.0-553.8.1.el8_10
Released
Ubuntu 22.04
Ready For Release
Ubuntu 22.04 AWS
Planned
Ubuntu 22.04 Azure
Planned
RHEL 9
Planned
Ubuntu 20.04 HWE Azure
Planned
Ubuntu 20.04 GCP
In Progress
Amazon Linux 2 5.10
Planned
Amazon Linux 2023
Planned
Ubuntu 24.04
6.8.0-31.31
Released