{"id":"CVE-2024-46780","summary":"nilfs2: protect references to superblock parameters exposed in sysfs","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: protect references to superblock parameters exposed in sysfs\n\nThe superblock buffers of nilfs2 can not only be overwritten at runtime\nfor modifications/repairs, but they are also regularly swapped, replaced\nduring resizing, and even abandoned when degrading to one side due to\nbacking device issues.  So, accessing them requires mutual exclusion using\nthe reader/writer semaphore \"nilfs-\u003ens_sem\".\n\nSome sysfs attribute show methods read this superblock buffer without the\nnecessary mutual exclusion, which can cause problems with pointer\ndereferencing and memory access, so fix it.","modified":"2026-03-20T12:37:54.180216Z","published":"2024-09-18T07:12:36.736Z","related":["MGASA-2024-0316","MGASA-2024-0318","SUSE-SU-2024:3551-1","SUSE-SU-2024:3553-1","SUSE-SU-2024:3561-1","SUSE-SU-2024:3564-1","SUSE-SU-2024:3569-1","SUSE-SU-2024:3587-1","SUSE-SU-2024:3592-1","SUSE-SU-2025:20073-1","SUSE-SU-2025:20077-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/46xxx/CVE-2024-46780.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/157c0d94b4c40887329418c70ef4edd1a8d6b4ed"},{"type":"WEB","url":"https://git.kernel.org/stable/c/19cfeba0e4b8eda51484fcf8cf7d150418e1d880"},{"type":"WEB","url":"https://git.kernel.org/stable/c/683408258917541bdb294cd717c210a04381931e"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8c6e43b3d5f109cf9c61bc188fcc8175404e924f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/962562d4c70c5cdeb4e955d63ff2017c4eca1aad"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b14e7260bb691d7f563f61da07d61e3c8b59a614"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b90beafac05931cbfcb6b1bd4f67c1923f47040e"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ba97ba173f9625d5f34a986088979eae8b80d38e"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2024/10/msg00003.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/46xxx/CVE-2024-46780.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-46780"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"da7141fb78db915680616e15677539fc8140cf53"},{"fixed":"b90beafac05931cbfcb6b1bd4f67c1923f47040e"},{"fixed":"ba97ba173f9625d5f34a986088979eae8b80d38e"},{"fixed":"157c0d94b4c40887329418c70ef4edd1a8d6b4ed"},{"fixed":"b14e7260bb691d7f563f61da07d61e3c8b59a614"},{"fixed":"19cfeba0e4b8eda51484fcf8cf7d150418e1d880"},{"fixed":"8c6e43b3d5f109cf9c61bc188fcc8175404e924f"},{"fixed":"962562d4c70c5cdeb4e955d63ff2017c4eca1aad"},{"fixed":"683408258917541bdb294cd717c210a04381931e"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-46780.json"}}],"schema_version":"1.7.5"}