CVE-2024-53234
erofs: handle NONHEAD !delta[1] lclusters gracefully
References
Notes
carnil> Introduced in d95ae5e25326 ("erofs: add support for the full decompressed
carnil> length")
carnil> 001b8ccd0650 ("erofs: fix compact 4B support for 16k block size"). Vulnerable
carnil> versions: 5.4.251 5.10.188 5.15-rc1.
Bugs
Status
| Branch |
Status |
| upstream |
released (6.13-rc1) [0bc8061ffc733a0a246b8689b2d32a3e9204f43c]
|
| 6.18-upstream-stable |
N/A "Fixed before branching point"
|
| 6.17-upstream-stable |
N/A "Fixed before branching point"
|
| 6.12-upstream-stable |
released (6.12.2) [daaf68fef4b2ff97928227630021d37b27a96655]
|
| 6.6-upstream-stable |
released (6.6.64) [f466641debcbea8bdf78d1b63a6270aadf9301bf]
|
| 6.1-upstream-stable |
released (6.1.127) [75a0a6dde803e7a3af700da8da9a361b49f69eba]
|
| 5.10-upstream-stable |
needed
|
| sid |
released (6.12.3-1)
|
| 6.12-trixie-security |
N/A "Fixed before branching point"
|
| 6.1-bookworm-security |
released (6.1.128-1)
|
| 5.10-bullseye-security |
needed
|
