oss-sec mailing list archives

CVE-2024-50217: Linux kernel: btrfs: Use-after-free of block device file in __btrfs_free_extra_devids()

From: "akendo () akendo eu" <akendo () akendo eu>
Date: Thu, 10 Apr 2025 12:22:46 +0000

Hey everyone,

Not too sure how or whom to ask about: But I saw that there is CVE-2024-50217 that affects every kernel since 4.8.

However, it is only fixed on more recent version of the linux kernel like 6.11 or 6.12. Any reason this wasn’t 
backported to older kernel versions?


Best regards,
Akendo

Current thread:

CVE-2024-50217: Linux kernel: btrfs: Use-after-free of block device file in __btrfs_free_extra_devids() akendo () akendo eu (Apr 10)
- Re: CVE-2024-50217: Linux kernel: btrfs: Use-after-free of block device file in __btrfs_free_extra_devids() Greg KH (Apr 10)
- Re: CVE-2024-50217: Linux kernel: btrfs: Use-after-free of block device file in __btrfs_free_extra_devids() Demi Marie Obenour (Apr 10)