A use-after-free flaw was found in the Linux Kernel. When a disk is removed, bdi_unregister is called to stop further write-back and waits for associated delayed work to complete. However, wb_inode_writeback_end() may schedule bandwidth estimation work after this has completed, which can result in the timer attempting to access the recently freed bdi_writeback.
Fixes

Solution

No solution given by the vendor.


Workaround

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

History

Mon, 11 Aug 2025 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2025-08-11T15:20:13.814Z

Reserved: 2024-01-15T15:02:03.198Z

Link: CVE-2024-0562

cve-icon Vulnrichment

Updated: 2024-08-01T18:11:35.675Z

cve-icon NVD

Status : Modified

Published: 2024-01-15T19:15:08.120

Modified: 2024-11-21T08:46:52.803

Link: CVE-2024-0562

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-03-10T00:00:00Z

Links: CVE-2024-0562 - Bugzilla

cve-icon OpenCVE Enrichment

No data.