CVE-2024-57928: netfs: Fix enomem handling in buffered reads
Description
In the Linux kernel, the following vulnerability has been resolved:
netfs: Fix enomem handling in buffered reads
If netfs_read_to_pagecache() gets an error from either ->prepare_read() or
from netfs_prepare_read_iterator(), it needs to decrement ->nr_outstanding,
cancel the subrequest and break out of the issuing loop. Currently, it
only does this for two of the cases, but there are two more that aren't
handled.
Fix this by moving the handling to a common place and jumping to it from
all four places. This is in preference to inserting a wrapper around
netfs_prepare_read_iterator() as proposed by Dmitry Antipov[1].
Classification
CVE ID: CVE-2024-57928
Affected Products
Vendor: Linux
Product: Linux
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 11.67% (scored less or equal to compared to others)
EPSS Date: 2025-02-17 (when was this score calculated)
References
https://git.kernel.org/stable/c/88ecdfea1b333de5c51442b45cd549eeadf01852https://git.kernel.org/stable/c/105549d09a539a876b7c3330ab52d8aceedad358