Add CVE-2024-23850

author: Salvatore Bonaccorso <carnil@debian.org> 2024-01-23 21:22:02 +0100
committer: Salvatore Bonaccorso <carnil@debian.org> 2024-01-23 21:22:02 +0100
commit: 0513b0f6f986b19a7bc25fd37b853d73d4bc2393 (patch)
tree: abef28a07877b364ab309f6815f64493916626f5 /active/CVE-2024-23850
parent: 9c955f710dd6c72a3ce8cf13cc0d2494e1b73aa6 (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/active/CVE-2024-23850 b/active/CVE-2024-23850
new file mode 100644
index 000000000..cfb2f68df
--- /dev/null
+++ b/active/CVE-2024-23850
@@ -0,0 +1,17 @@
+Description: btrfs: do not ASSERT() if the newly created subvolume already got read
+References:
+ https://lore.kernel.org/lkml/CALGdzuo6awWdau3X=8XK547x2vX_-VoFmH1aPsqosRTQ5WzJVA%40mail.gmail.com/
+ https://lore.kernel.org/all/6a80cb4b32af89787dadee728310e5e2ca85343f.1705741883.git.wqu%40suse.com/
+Notes:
+ carnil> Commit fixes 2dfb1e43f57d ("btrfs: preallocate anon block
+ carnil> device at first phase of snapshot creation") in 5.9-rc1 (and
+ carnil> backported to 5.8.3)
+Bugs:
+upstream: needed
+6.1-upstream-stable: needed
+5.10-upstream-stable: needed
+4.19-upstream-stable: N/A "Vulnerable code not present"
+sid: needed
+6.1-bookworm-security: needed
+5.10-bullseye-security: needed
+4.19-buster-security: N/A "Vulnerable code not present"
author	Salvatore Bonaccorso <carnil@debian.org>	2024-01-23 21:22:02 +0100
committer	Salvatore Bonaccorso <carnil@debian.org>	2024-01-23 21:22:02 +0100
commit	0513b0f6f986b19a7bc25fd37b853d73d4bc2393 (patch)
tree	abef28a07877b364ab309f6815f64493916626f5 /active/CVE-2024-23850
parent	9c955f710dd6c72a3ce8cf13cc0d2494e1b73aa6 (diff)