CVE-2024-49933

blk_iocost: fix more out of bound shifts

Description

In the Linux kernel, the following vulnerability has been resolved: blk_iocost: fix more out of bound shifts Recently running UBSAN caught few out of bound shifts in the ioc_forgive_debts() function: UBSAN: shift-out-of-bounds in block/blk-iocost.c:2142:38 shift exponent 80 is too large for 64-bit type 'u64' (aka 'unsigned long long') ... UBSAN: shift-out-of-bounds in block/blk-iocost.c:2144:30 shift exponent 80 is too large for 64-bit type 'u64' (aka 'unsigned long long') ... Call Trace: <IRQ> dump_stack_lvl+0xca/0x130 __ubsan_handle_shift_out_of_bounds+0x22c/0x280 ? __lock_acquire+0x6441/0x7c10 ioc_timer_fn+0x6cec/0x7750 ? blk_iocost_init+0x720/0x720 ? call_timer_fn+0x5d/0x470 call_timer_fn+0xfa/0x470 ? blk_iocost_init+0x720/0x720 __run_timer_base+0x519/0x700 ... Actual impact of this issue was not identified but I propose to fix the undefined behaviour. The proposed fix to prevent those out of bound shifts consist of precalculating exponent before using it the shift operations by taking min value from the actual exponent and maximum possible number of bits.

5.5
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.03%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/1f61d509257d6a05763d05bf37943b35306522b1 patch
https://git.kernel.org/stable/c/f4ef9bef023d5c543cb0f3194ecacfd47ef590ec patch
https://git.kernel.org/stable/c/59121bb38fdc01434ea3fe361ee02b59f036227f patch
https://git.kernel.org/stable/c/1ab2cfe19700fb3dde4c7dfec392acff34db3120 patch
https://git.kernel.org/stable/c/1b120f151871eb47ce9f283c007af3f8ae1d990e patch
https://git.kernel.org/stable/c/364022095bdd4108efdaaa68576afa4712a5d085 patch
https://git.kernel.org/stable/c/9bce8005ec0dcb23a58300e8522fe4a31da606fa patch

Frequently Asked Questions

What is the severity of CVE-2024-49933?
CVE-2024-49933 has been scored as a medium severity vulnerability.
How to fix CVE-2024-49933?
To fix CVE-2024-49933, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-49933 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-49933 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-49933?
CVE-2024-49933 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.