In the Linux kernel, the following vulnerability has been resolved:
block: Fix wrong offset in bio_truncate()
bio_truncate() clears the buffer outside of last block of bdev, however
current bio_truncate() is using the wrong offset of page. So it can
return the uninitialized data.
This happened when both of truncated/corrupted FS and userspace (via
bdev) are trying to read the last of bdev.
Metrics
Affected Vendors & Products
References
History
Thu, 08 Aug 2024 23:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Redhat
Redhat enterprise Linux |
|
CPEs | cpe:/a:redhat:enterprise_linux:8::nfv cpe:/o:redhat:enterprise_linux:8 |
|
Vendors & Products |
Redhat
Redhat enterprise Linux |
MITRE
Status: PUBLISHED
Assigner: Linux
Published: 2024-06-20T11:13:29.951Z
Updated: 2024-08-03T15:25:01.583Z
Reserved: 2024-06-20T11:09:39.055Z
Link: CVE-2022-48747
Vulnrichment
Updated: 2024-08-03T15:25:01.583Z
NVD
Status : Awaiting Analysis
Published: 2024-06-20T12:15:12.960
Modified: 2024-07-03T01:39:13.487
Link: CVE-2022-48747
Redhat