CVE-2024-41017

Advisory lineage Upstream: 0 Downstream: 35

Downstream

DEBIAN-CVE-2024-41017 DLA-4008-1 DSA-5747-1 MGASA-2024-0277 MGASA-2024-0278 SUSE-SU-2024:2802-1

Modified

Published: 29 Jul 2024, 06:37

Last modified:11 May 2026, 20:24

Vulnerability Summary

Overall Risk (default)

low

22/100

CVSS Score

5.5 MEDIUM

v3.1 (nvd)

EPSS Score

0.02% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

29 Jul 2024, 06:37

Published

Vulnerability first disclosed

11 May 2026, 20:24

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: jfs: don't walk off the end of ealist Add a check before visiting the members of ea to make sure each ea stays within the ealist.

CVSS Metrics

v3.1•MEDIUM•Score: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Trends

Current EPSS score: 0.02%• Percentile: 5%

Affected Systems

linux•linux
≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 7f91bd0f2941fa36449ce1a15faaa64f840d9746 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < fc16776a82e8df97b6c4f9a10ba95aa44cef7ba5 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 6386f1b6a10e5d1ddd03db4ff6dfc55d488852ce | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 7e21574195a45fc193555fa40e99fed16565ff7e | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 4e034f7e563ab723b93a59980e4a1bb33198ece8 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < 17440dbc66ab98b410514b04987f61deedb86751 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < f4435f476b9bf059cd9e26a69f5b29c768d00375 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < dbde7bc91093fa9c2410e418b236b70fde044b73 | ≥ 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, < d0fa70aca54c8643248e89061da23752506ec0d4 | 2.6.12
linux•linux_kernel
< 4.19.319 | ≥ 4.20, < 5.4.281 | ≥ 5.5, < 5.10.223 | ≥ 5.11, < 5.15.164 | ≥ 5.16, < 6.1.102 | ≥ 6.2, < 6.6.43 | ≥ 6.7, < 6.9.12 | ≥ 6.10, < 6.10.2