[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-49883":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":148,"related":149,"reserved_at":9,"published_at":171,"modified_at":172,"state":173,"summary":174,"references_raw":183,"kevs":232,"epss":233,"epss_history":236,"metrics":503,"affected":509},"CVE-2024-49883","In the Linux kernel, the following vulnerability has been resolved:\n\next4: aovid use-after-free in ext4_ext_insert_extent()\n\nAs Ojaswin mentioned in Link, in ext4_ext_insert_extent(), if the path is\nreallocated in ext4_ext_create_new_leaf(), we'll use the stale path and\ncause UAF. Below is a sample trace with dummy values:\n\next4_ext_insert_extent\n  path = *ppath = 2000\n  ext4_ext_create_new_leaf(ppath)\n    ext4_find_extent(ppath)\n      path = *ppath = 2000\n      if (depth > path[0].p_maxdepth)\n            kfree(path = 2000);\n            *ppath = path = NULL;\n      path = kcalloc() = 3000\n      *ppath = 3000;\n      return path;\n  /* here path is still 2000, UAF! */\n  eh = path[depth].p_hdr\n\n==================================================================\nBUG: KASAN: slab-use-after-free in ext4_ext_insert_extent+0x26d4/0x3330\nRead of size 8 at addr ffff8881027bf7d0 by task kworker/u36:1/179\nCPU: 3 UID: 0 PID: 179 Comm: kworker/u6:1 Not tainted 6.11.0-rc2-dirty #866\nCall Trace:\n \u003CTASK>\n ext4_ext_insert_extent+0x26d4/0x3330\n ext4_ext_map_blocks+0xe22/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n[...]\n\nAllocated by task 179:\n ext4_find_extent+0x81c/0x1f70\n ext4_ext_map_blocks+0x146/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n ext4_writepages+0x26d/0x4e0\n do_writepages+0x175/0x700\n[...]\n\nFreed by task 179:\n kfree+0xcb/0x240\n ext4_find_extent+0x7c0/0x1f70\n ext4_ext_insert_extent+0xa26/0x3330\n ext4_ext_map_blocks+0xe22/0x2d40\n ext4_map_blocks+0x71e/0x1700\n ext4_do_writepages+0x1290/0x2800\n ext4_writepages+0x26d/0x4e0\n do_writepages+0x175/0x700\n[...]\n==================================================================\n\nSo use *ppath to update the path to avoid the above problem.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","weakness","Stable","Variant","High",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106,108,110,112,114,116,118,120,122,124,126,128,130,132,134,136,138,140,142,144,146],{"_key":25},"SUSE-SU-2024:4100-1",{"_key":27},"SUSE-SU-2024:4364-1",{"_key":29},"SUSE-SU-2024:4387-1",{"_key":31},"SUSE-SU-2025:0034-1",{"_key":33},"SUSE-SU-2024:3983-1",{"_key":35},"SUSE-SU-2024:3984-1",{"_key":37},"SUSE-SU-2024:3985-1",{"_key":39},"SUSE-SU-2024:4314-1",{"_key":41},"SUSE-SU-2024:4318-1",{"_key":43},"OPENSUSE-SU-2024:14500-1",{"_key":45},"OPENSUSE-SU-2025:14705-1",{"_key":47},"DLA-4008-1",{"_key":49},"DLA-4075-1",{"_key":51},"SUSE-SU-2025:20163-1",{"_key":53},"SUSE-SU-2025:20164-1",{"_key":55},"SUSE-SU-2025:20246-1",{"_key":57},"SUSE-SU-2025:20247-1",{"_key":59},"MGASA-2024-0344",{"_key":61},"MGASA-2024-0345",{"_key":63},"DEBIAN-CVE-2024-49883",{"_key":65},"RHSA-2025:6966",{"_key":67},"UBUNTU-CVE-2024-49883",{"_key":69},"USN-7684-1",{"_key":71},"USN-7684-2",{"_key":73},"USN-7684-3",{"_key":75},"USN-7685-1",{"_key":77},"USN-7685-2",{"_key":79},"USN-7685-3",{"_key":81},"USN-7685-4",{"_key":83},"USN-7685-5",{"_key":85},"LSN-0114-1",{"_key":87},"USN-7166-1",{"_key":89},"USN-7166-2",{"_key":91},"USN-7166-3",{"_key":93},"USN-7166-4",{"_key":95},"USN-7186-1",{"_key":97},"USN-7186-2",{"_key":99},"USN-7194-1",{"_key":101},"USN-7293-1",{"_key":103},"USN-7294-1",{"_key":105},"USN-7294-2",{"_key":107},"USN-7294-3",{"_key":109},"USN-7294-4",{"_key":111},"USN-7295-1",{"_key":113},"USN-7301-1",{"_key":115},"USN-7303-1",{"_key":117},"USN-7303-2",{"_key":119},"USN-7303-3",{"_key":121},"USN-7304-1",{"_key":123},"USN-7310-1",{"_key":125},"USN-7311-1",{"_key":127},"USN-7384-1",{"_key":129},"USN-7384-2",{"_key":131},"USN-7385-1",{"_key":133},"USN-7386-1",{"_key":135},"USN-7393-1",{"_key":137},"USN-7401-1",{"_key":139},"USN-7403-1",{"_key":141},"USN-7413-1",{"_key":143},"USN-7468-1",{"_key":145},"USN-7539-1",{"_key":147},"USN-7540-1",[],[150,151,152,153,154,156,158,159,160,161,162,163,164,165,166,167,168,169,170],{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":155},"USN-7276-1",{"_key":157},"USN-7277-1",{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},{"_key":45},{"_key":51},{"_key":53},{"_key":55},{"_key":57},{"_key":59},{"_key":61},"2024-10-21T18:01:20.827Z","2026-05-11T20:41:06.353Z","Analyzed",{"cisa_kev":175,"cisa_ransomware":175,"cisa_vendor":9,"epss_severity":176,"epss_score":177,"severity":178,"severity_score":179,"severity_version":180,"severity_source":181,"severity_vector":182,"severity_status":173},false,"low",0.00012,"high",7.8,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[184,190,194,198,202,206,210,214,218,222,228],{"url":185,"sources":186,"tags":188},"https://git.kernel.org/stable/c/e17ebe4fdd7665c93ae9459ba40fcdfb76769ac1",[187,181],"cve.org",[189],"Patch",{"url":191,"sources":192,"tags":193},"https://git.kernel.org/stable/c/975ca06f3fd154c5f7742083e7b2574c57d1c0c3",[187,181],[189],{"url":195,"sources":196,"tags":197},"https://git.kernel.org/stable/c/5e811066c5ab709b070659197dccfb80ab650ddd",[187,181],[189],{"url":199,"sources":200,"tags":201},"https://git.kernel.org/stable/c/9df59009dfc6d9fc1bd9ddf6c5ab6e56d6ed887a",[187,181],[189],{"url":203,"sources":204,"tags":205},"https://git.kernel.org/stable/c/51db04892a993cace63415be99848970a0f15ef2",[187,181],[189],{"url":207,"sources":208,"tags":209},"https://git.kernel.org/stable/c/8162ee5d94b8c0351be0a9321be134872a7654a1",[187,181],[189],{"url":211,"sources":212,"tags":213},"https://git.kernel.org/stable/c/beb7b66fb489041c50c6473100b383f7a51648fc",[187,181],[189],{"url":215,"sources":216,"tags":217},"https://git.kernel.org/stable/c/bfed082ce4b1ce6349b05c09a0fa4f3da35ecb1b",[187,181],[189],{"url":219,"sources":220,"tags":221},"https://git.kernel.org/stable/c/a164f3a432aae62ca23d03e6d926b122ee5b860d",[187,181],[189],{"url":223,"sources":224,"tags":225},"https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html",[187,181],[226,227],"Mailing List","Third Party Advisory",{"url":229,"sources":230,"tags":231},"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html",[187,181],[226,227],[],{"date":234,"score":177,"percentile":235},"2026-06-03",0.01718,[237,241,244,247,250,253,256,259,262,265,268,271,274,276,279,283,286,289,292,295,298,301,303,306,309,312,316,319,322,325,328,331,335,338,341,344,347,350,353,356,359,362,365,368,371,374,377,379,382,385,387,390,393,396,399,401,404,407,410,413,416,419,422,425,427,430,433,436,439,442,445,448,450,453,456,459,462,465,468,471,473,476,479,482,485,488,491,494,497,500],{"date":238,"score":239,"percentile":240},"2025-11-04",0.00044,0.13038,{"date":242,"score":239,"percentile":243},"2025-11-05",0.13065,{"date":245,"score":239,"percentile":246},"2025-11-06",0.13155,{"date":248,"score":239,"percentile":249},"2025-11-07",0.13168,{"date":251,"score":239,"percentile":252},"2025-11-08",0.1317,{"date":254,"score":239,"percentile":255},"2025-11-09",0.13143,{"date":257,"score":239,"percentile":258},"2025-11-10",0.1311,{"date":260,"score":239,"percentile":261},"2025-11-11",0.13127,{"date":263,"score":239,"percentile":264},"2025-11-12",0.13104,{"date":266,"score":239,"percentile":267},"2025-11-13",0.13129,{"date":269,"score":239,"percentile":270},"2025-11-14",0.13145,{"date":272,"score":239,"percentile":273},"2025-11-15",0.13135,{"date":275,"score":239,"percentile":267},"2025-11-16",{"date":277,"score":239,"percentile":278},"2025-11-17",0.13106,{"date":280,"score":281,"percentile":282},"2025-11-18",0.00082,0.20172,{"date":284,"score":281,"percentile":285},"2025-11-19",0.20182,{"date":287,"score":281,"percentile":288},"2025-11-20",0.20155,{"date":290,"score":239,"percentile":291},"2025-11-21",0.13139,{"date":293,"score":239,"percentile":294},"2025-11-22",0.13144,{"date":296,"score":239,"percentile":297},"2025-11-23",0.13122,{"date":299,"score":239,"percentile":300},"2025-11-24",0.13076,{"date":302,"score":239,"percentile":300},"2025-11-25",{"date":304,"score":239,"percentile":305},"2025-11-26",0.13068,{"date":307,"score":239,"percentile":308},"2025-11-27",0.1307,{"date":310,"score":239,"percentile":311},"2025-11-28",0.13046,{"date":313,"score":314,"percentile":315},"2025-11-29",0.00047,0.14189,{"date":317,"score":314,"percentile":318},"2025-11-30",0.14199,{"date":320,"score":314,"percentile":321},"2025-12-01",0.14232,{"date":323,"score":314,"percentile":324},"2025-12-02",0.14252,{"date":326,"score":314,"percentile":327},"2025-12-03",0.14276,{"date":329,"score":314,"percentile":330},"2025-12-04",0.14254,{"date":332,"score":333,"percentile":334},"2025-12-05",0.00011,0.00938,{"date":336,"score":333,"percentile":337},"2025-12-06",0.00939,{"date":339,"score":333,"percentile":340},"2025-12-07",0.00946,{"date":342,"score":333,"percentile":343},"2025-12-08",0.0095,{"date":345,"score":177,"percentile":346},"2025-12-09",0.01392,{"date":348,"score":177,"percentile":349},"2025-12-10",0.01404,{"date":351,"score":177,"percentile":352},"2025-12-11",0.01397,{"date":354,"score":177,"percentile":355},"2025-12-12",0.01398,{"date":357,"score":177,"percentile":358},"2025-12-13",0.01385,{"date":360,"score":177,"percentile":361},"2025-12-14",0.01379,{"date":363,"score":177,"percentile":364},"2025-12-15",0.01375,{"date":366,"score":177,"percentile":367},"2025-12-16",0.0138,{"date":369,"score":177,"percentile":370},"2025-12-17",0.01223,{"date":372,"score":177,"percentile":373},"2025-12-18",0.01214,{"date":375,"score":177,"percentile":376},"2025-12-19",0.01219,{"date":378,"score":177,"percentile":376},"2025-12-20",{"date":380,"score":177,"percentile":381},"2025-12-21",0.01228,{"date":383,"score":177,"percentile":384},"2025-12-22",0.01229,{"date":386,"score":177,"percentile":381},"2025-12-23",{"date":388,"score":177,"percentile":389},"2025-12-24",0.01231,{"date":391,"score":177,"percentile":392},"2025-12-25",0.01235,{"date":394,"score":177,"percentile":395},"2025-12-26",0.01237,{"date":397,"score":177,"percentile":398},"2025-12-27",0.01234,{"date":400,"score":177,"percentile":398},"2025-12-28",{"date":402,"score":177,"percentile":403},"2025-12-29",0.01226,{"date":405,"score":177,"percentile":406},"2025-12-30",0.01222,{"date":408,"score":177,"percentile":409},"2025-12-31",0.01221,{"date":411,"score":177,"percentile":412},"2026-01-01",0.01246,{"date":414,"score":177,"percentile":415},"2026-01-02",0.01241,{"date":417,"score":177,"percentile":418},"2026-01-03",0.01243,{"date":420,"score":177,"percentile":421},"2026-01-04",0.0121,{"date":423,"score":177,"percentile":424},"2026-01-05",0.01218,{"date":426,"score":177,"percentile":373},"2026-01-06",{"date":428,"score":177,"percentile":429},"2026-01-07",0.01217,{"date":431,"score":177,"percentile":432},"2026-01-08",0.0123,{"date":434,"score":177,"percentile":435},"2026-01-09",0.01244,{"date":437,"score":177,"percentile":438},"2026-01-10",0.0125,{"date":440,"score":177,"percentile":441},"2026-01-11",0.01249,{"date":443,"score":177,"percentile":444},"2026-01-12",0.01255,{"date":446,"score":177,"percentile":447},"2026-01-13",0.01251,{"date":449,"score":177,"percentile":438},"2026-01-14",{"date":451,"score":177,"percentile":452},"2026-01-15",0.01264,{"date":454,"score":177,"percentile":455},"2026-01-16",0.01269,{"date":457,"score":177,"percentile":458},"2026-01-17",0.01271,{"date":460,"score":177,"percentile":461},"2026-01-18",0.01285,{"date":463,"score":177,"percentile":464},"2026-01-19",0.01279,{"date":466,"score":177,"percentile":467},"2026-01-20",0.01266,{"date":469,"score":177,"percentile":470},"2026-01-21",0.01263,{"date":472,"score":177,"percentile":470},"2026-01-22",{"date":474,"score":177,"percentile":475},"2026-01-23",0.01276,{"date":477,"score":177,"percentile":478},"2026-01-24",0.0128,{"date":480,"score":177,"percentile":481},"2026-01-25",0.01278,{"date":483,"score":177,"percentile":484},"2026-01-26",0.01277,{"date":486,"score":177,"percentile":487},"2026-01-27",0.01268,{"date":489,"score":177,"percentile":490},"2026-01-28",0.01265,{"date":492,"score":177,"percentile":493},"2026-01-29",0.01272,{"date":495,"score":177,"percentile":496},"2026-01-30",0.01274,{"date":498,"score":177,"percentile":499},"2026-01-31",0.0129,{"date":501,"score":177,"percentile":502},"2026-02-01",0.01315,[504],{"source":181,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":505,"cvss_v4_0":9},{"baseScore":179,"baseSeverity":506,"vectorString":182,"impactScore":507,"exploitabilityScore":508},"HIGH",9.8,4.6,[510,519,557],{"ecosystem":9,"name":511,"vendor":512,"product":513,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":515},"debian linux","debian","debian_linux","o",[516],{"version":517,"is_range":175,"range_type":518,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"11.0","cpe",{"ecosystem":9,"name":520,"vendor":521,"product":521,"cpe_part":522,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":523},"Linux","linux","a",[524,531,534,537,540,543,546,549,552,555],{"version":525,"is_range":526,"range_type":187,"version_start":527,"version_start_type":528,"version_end":529,"version_end_type":530,"fixed_in":9},">= 10809df84a4d868db61af621bae3658494165279, \u003C e17ebe4fdd7665c93ae9459ba40fcdfb76769ac1",true,"10809df84a4d868db61af621bae3658494165279","including","e17ebe4fdd7665c93ae9459ba40fcdfb76769ac1","excluding",{"version":532,"is_range":526,"range_type":187,"version_start":527,"version_start_type":528,"version_end":533,"version_end_type":530,"fixed_in":9},">= 10809df84a4d868db61af621bae3658494165279, \u003C 975ca06f3fd154c5f7742083e7b2574c57d1c0c3","975ca06f3fd154c5f7742083e7b2574c57d1c0c3",{"version":535,"is_range":526,"range_type":187,"version_start":527,"version_start_type":528,"version_end":536,"version_end_type":530,"fixed_in":9},">= 10809df84a4d868db61af621bae3658494165279, \u003C 5e811066c5ab709b070659197dccfb80ab650ddd","5e811066c5ab709b070659197dccfb80ab650ddd",{"version":538,"is_range":526,"range_type":187,"version_start":527,"version_start_type":528,"version_end":539,"version_end_type":530,"fixed_in":9},">= 10809df84a4d868db61af621bae3658494165279, \u003C 9df59009dfc6d9fc1bd9ddf6c5ab6e56d6ed887a","9df59009dfc6d9fc1bd9ddf6c5ab6e56d6ed887a",{"version":541,"is_range":526,"range_type":187,"version_start":527,"version_start_type":528,"version_end":542,"version_end_type":530,"fixed_in":9},">= 10809df84a4d868db61af621bae3658494165279, \u003C 51db04892a993cace63415be99848970a0f15ef2","51db04892a993cace63415be99848970a0f15ef2",{"version":544,"is_range":526,"range_type":187,"version_start":527,"version_start_type":528,"version_end":545,"version_end_type":530,"fixed_in":9},">= 10809df84a4d868db61af621bae3658494165279, \u003C 8162ee5d94b8c0351be0a9321be134872a7654a1","8162ee5d94b8c0351be0a9321be134872a7654a1",{"version":547,"is_range":526,"range_type":187,"version_start":527,"version_start_type":528,"version_end":548,"version_end_type":530,"fixed_in":9},">= 10809df84a4d868db61af621bae3658494165279, \u003C beb7b66fb489041c50c6473100b383f7a51648fc","beb7b66fb489041c50c6473100b383f7a51648fc",{"version":550,"is_range":526,"range_type":187,"version_start":527,"version_start_type":528,"version_end":551,"version_end_type":530,"fixed_in":9},">= 10809df84a4d868db61af621bae3658494165279, \u003C bfed082ce4b1ce6349b05c09a0fa4f3da35ecb1b","bfed082ce4b1ce6349b05c09a0fa4f3da35ecb1b",{"version":553,"is_range":526,"range_type":187,"version_start":527,"version_start_type":528,"version_end":554,"version_end_type":530,"fixed_in":9},">= 10809df84a4d868db61af621bae3658494165279, \u003C a164f3a432aae62ca23d03e6d926b122ee5b860d","a164f3a432aae62ca23d03e6d926b122ee5b860d",{"version":556,"is_range":175,"range_type":187,"version_start":556,"version_start_type":528,"version_end":556,"version_end_type":528,"fixed_in":9},"3.18",{"ecosystem":9,"name":558,"vendor":521,"product":559,"cpe_part":514,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":560},"linux kernel","linux_kernel",[561,564,567,571,574,578,582,586,590],{"version":562,"is_range":526,"range_type":518,"version_start":556,"version_start_type":528,"version_end":563,"version_end_type":530,"fixed_in":9},"gte3.18_lt5.10.227","5.10.227",{"version":565,"is_range":526,"range_type":518,"version_start":556,"version_start_type":528,"version_end":566,"version_end_type":530,"fixed_in":9},"gte3.18_lt4.19.323","4.19.323",{"version":568,"is_range":526,"range_type":518,"version_start":569,"version_start_type":528,"version_end":570,"version_end_type":530,"fixed_in":9},"gte4.20_lt5.4.285","4.20","5.4.285",{"version":572,"is_range":526,"range_type":518,"version_start":573,"version_start_type":528,"version_end":563,"version_end_type":530,"fixed_in":9},"gte5.5_lt5.10.227","5.5",{"version":575,"is_range":526,"range_type":518,"version_start":576,"version_start_type":528,"version_end":577,"version_end_type":530,"fixed_in":9},"gte5.11_lt5.15.168","5.11","5.15.168",{"version":579,"is_range":526,"range_type":518,"version_start":580,"version_start_type":528,"version_end":581,"version_end_type":530,"fixed_in":9},"gte5.16_lt6.1.113","5.16","6.1.113",{"version":583,"is_range":526,"range_type":518,"version_start":584,"version_start_type":528,"version_end":585,"version_end_type":530,"fixed_in":9},"gte6.2_lt6.6.55","6.2","6.6.55",{"version":587,"is_range":526,"range_type":518,"version_start":588,"version_start_type":528,"version_end":589,"version_end_type":530,"fixed_in":9},"gte6.7_lt6.10.14","6.7","6.10.14",{"version":591,"is_range":526,"range_type":518,"version_start":592,"version_start_type":528,"version_end":593,"version_end_type":530,"fixed_in":9},"gte6.11_lt6.11.3","6.11","6.11.3"]