CVE-2024-49965

ocfs2: remove unreasonable unlock in ocfs2_read_blocks

Description

In the Linux kernel, the following vulnerability has been resolved: ocfs2: remove unreasonable unlock in ocfs2_read_blocks Patch series "Misc fixes for ocfs2_read_blocks", v5. This series contains 2 fixes for ocfs2_read_blocks(). The first patch fix the issue reported by syzbot, which detects bad unlock balance in ocfs2_read_blocks(). The second patch fixes an issue reported by Heming Zhao when reviewing above fix. This patch (of 2): There was a lock release before exiting, so remove the unreasonable unlock.

Category

5.5
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.03%
Affected: Linux Linux
Affected: Linux Linux
Published at:
Updated at:

References

Link Tags
https://git.kernel.org/stable/c/5245f109b4afb6595360d4c180d483a6d2009a59
https://git.kernel.org/stable/c/9753bcb17b36c9add9b32c61766ddf8d2d161911
https://git.kernel.org/stable/c/3f1ca6ba5452d53c598a45d21267a2c0c221eef3 patch
https://git.kernel.org/stable/c/f55a33fe0fb5274ef185fd61947cf142138958af patch
https://git.kernel.org/stable/c/81aba693b129e82e11bb54f569504d943d018de9 patch
https://git.kernel.org/stable/c/84543da867c967edffd5065fa910ebf56aaae49d patch
https://git.kernel.org/stable/c/df4f20fc3673cee11abf2c571987a95733cb638d patch
https://git.kernel.org/stable/c/39a88623af3f1c686bf6db1e677ed865ffe6fccc patch
https://git.kernel.org/stable/c/c03a82b4a0c935774afa01fd6d128b444fd930a1 patch

Frequently Asked Questions

What is the severity of CVE-2024-49965?
CVE-2024-49965 has been scored as a medium severity vulnerability.
How to fix CVE-2024-49965?
To fix CVE-2024-49965, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2024-49965 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2024-49965 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2024-49965?
CVE-2024-49965 affects Linux Linux, Linux Linux.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.