U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Vulnerability Database

National Vulnerability Database

NVD

National Vulnerability Database
  1. Vulnerabilities

CVE-2024-58001 Detail

Description

In the Linux kernel, the following vulnerability has been resolved: ocfs2: handle a symlink read error correctly Patch series "Convert ocfs2 to use folios". Mark did a conversion of ocfs2 to use folios and sent it to me as a giant patch for review ;-) So I've redone it as individual patches, and credited Mark for the patches where his code is substantially the same. It's not a bad way to do it; his patch had some bugs and my patches had some bugs. Hopefully all our bugs were different from each other. And hopefully Mark likes all the changes I made to his code! This patch (of 23): If we can't read the buffer, be sure to unlock the page before returning.


Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.
CVSS 4.0 Severity and Vector Strings:

NIST CVSS score
NIST: NVD
N/A
NVD assessment not yet provided.

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to [email protected].

URL Source(s) Tag(s)
https://git.kernel.org/stable/c/2b4c2094da6d84e69b843dd3317902e977bf64bd kernel.org Patch 
https://git.kernel.org/stable/c/52a326f93ceb9348264fddf7bab6e345db69e08c kernel.org Patch 
https://git.kernel.org/stable/c/5e3b3ec7c3cb5ba5629a766e4f0926db72cf0a1f kernel.org Patch 
https://git.kernel.org/stable/c/6e143eb4ab83c24e7ad3e3d8e7daa241d9c38377 kernel.org Patch 
https://git.kernel.org/stable/c/8aee4184c5b79e486598c15aa80687c77f6f6e6e kernel.org Patch 
https://git.kernel.org/stable/c/afa8003f8db62e46c4b171cbf4cec2824148b4f7 kernel.org Patch 
https://git.kernel.org/stable/c/b6833b38984d1e9f20dd80f9ec9050c10d687f30 kernel.org Patch 
https://git.kernel.org/stable/c/cd3e22b206189cbb4a94229002141e1529f83746 kernel.org Patch 
https://lists.debian.org/debian-lts-announce/2025/03/msg00028.html CVE
https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html CVE

Weakness Enumeration

CWE-ID CWE Name Source
NVD-CWE-noinfo Insufficient Information cwe source acceptance level NIST  

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

4 change records found show changes

Quick Info

CVE Dictionary Entry:
CVE-2024-58001
NVD Published Date:
02/26/2025
NVD Last Modified:
11/03/2025
Source:
kernel.org