[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-56581":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":112,"related":113,"reserved_at":9,"published_at":118,"modified_at":119,"state":120,"summary":121,"references_raw":130,"kevs":169,"epss":170,"epss_history":173,"metrics":432,"affected":440},"CVE-2024-56581","In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: ref-verify: fix use-after-free after invalid ref action\n\nAt btrfs_ref_tree_mod() after we successfully inserted the new ref entry\n(local variable 'ref') into the respective block entry's rbtree (local\nvariable 'be'), if we find an unexpected action of BTRFS_DROP_DELAYED_REF,\nwe error out and free the ref entry without removing it from the block\nentry's rbtree. Then in the error path of btrfs_ref_tree_mod() we call\nbtrfs_free_ref_cache(), which iterates over all block entries and then\ncalls free_block_entry() for each one, and there we will trigger a\nuse-after-free when we are called against the block entry to which we\nadded the freed ref entry to its rbtree, since the rbtree still points\nto the block entry, as we didn't remove it from the rbtree before freeing\nit in the error path at btrfs_ref_tree_mod(). Fix this by removing the\nnew ref entry from the rbtree before freeing it.\n\nSyzbot report this with the following stack traces:\n\n   BTRFS error (device loop0 state EA):   Ref action 2, root 5, ref_root 0, parent 8564736, owner 0, offset 0, num_refs 18446744073709551615\n      __btrfs_mod_ref+0x7dd/0xac0 fs/btrfs/extent-tree.c:2523\n      update_ref_for_cow+0x9cd/0x11f0 fs/btrfs/ctree.c:512\n      btrfs_force_cow_block+0x9f6/0x1da0 fs/btrfs/ctree.c:594\n      btrfs_cow_block+0x35e/0xa40 fs/btrfs/ctree.c:754\n      btrfs_search_slot+0xbdd/0x30d0 fs/btrfs/ctree.c:2116\n      btrfs_insert_empty_items+0x9c/0x1a0 fs/btrfs/ctree.c:4314\n      btrfs_insert_empty_item fs/btrfs/ctree.h:669 [inline]\n      btrfs_insert_orphan_item+0x1f1/0x320 fs/btrfs/orphan.c:23\n      btrfs_orphan_add+0x6d/0x1a0 fs/btrfs/inode.c:3482\n      btrfs_unlink+0x267/0x350 fs/btrfs/inode.c:4293\n      vfs_unlink+0x365/0x650 fs/namei.c:4469\n      do_unlinkat+0x4ae/0x830 fs/namei.c:4533\n      __do_sys_unlinkat fs/namei.c:4576 [inline]\n      __se_sys_unlinkat fs/namei.c:4569 [inline]\n      __x64_sys_unlinkat+0xcc/0xf0 fs/namei.c:4569\n      do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n      do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n      entry_SYSCALL_64_after_hwframe+0x77/0x7f\n   BTRFS error (device loop0 state EA):   Ref action 1, root 5, ref_root 5, parent 0, owner 260, offset 0, num_refs 1\n      __btrfs_mod_ref+0x76b/0xac0 fs/btrfs/extent-tree.c:2521\n      update_ref_for_cow+0x96a/0x11f0\n      btrfs_force_cow_block+0x9f6/0x1da0 fs/btrfs/ctree.c:594\n      btrfs_cow_block+0x35e/0xa40 fs/btrfs/ctree.c:754\n      btrfs_search_slot+0xbdd/0x30d0 fs/btrfs/ctree.c:2116\n      btrfs_lookup_inode+0xdc/0x480 fs/btrfs/inode-item.c:411\n      __btrfs_update_delayed_inode+0x1e7/0xb90 fs/btrfs/delayed-inode.c:1030\n      btrfs_update_delayed_inode fs/btrfs/delayed-inode.c:1114 [inline]\n      __btrfs_commit_inode_delayed_items+0x2318/0x24a0 fs/btrfs/delayed-inode.c:1137\n      __btrfs_run_delayed_items+0x213/0x490 fs/btrfs/delayed-inode.c:1171\n      btrfs_commit_transaction+0x8a8/0x3740 fs/btrfs/transaction.c:2313\n      prepare_to_relocate+0x3c4/0x4c0 fs/btrfs/relocation.c:3586\n      relocate_block_group+0x16c/0xd40 fs/btrfs/relocation.c:3611\n      btrfs_relocate_block_group+0x77d/0xd90 fs/btrfs/relocation.c:4081\n      btrfs_relocate_chunk+0x12c/0x3b0 fs/btrfs/volumes.c:3377\n      __btrfs_balance+0x1b0f/0x26b0 fs/btrfs/volumes.c:4161\n      btrfs_balance+0xbdc/0x10c0 fs/btrfs/volumes.c:4538\n   BTRFS error (device loop0 state EA):   Ref action 2, root 5, ref_root 0, parent 8564736, owner 0, offset 0, num_refs 18446744073709551615\n      __btrfs_mod_ref+0x7dd/0xac0 fs/btrfs/extent-tree.c:2523\n      update_ref_for_cow+0x9cd/0x11f0 fs/btrfs/ctree.c:512\n      btrfs_force_cow_block+0x9f6/0x1da0 fs/btrfs/ctree.c:594\n      btrfs_cow_block+0x35e/0xa40 fs/btrfs/ctree.c:754\n      btrfs_search_slot+0xbdd/0x30d0 fs/btrfs/ctree.c:2116\n      btrfs_lookup_inode+0xdc/0x480 fs/btrfs/inode-item.c:411\n      __btrfs_update_delayed_inode+0x1e7/0xb90 fs/btrfs/delayed-inode.c:1030\n      btrfs_update_delayed_i\n---truncated---",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","weakness","Stable","Variant","High",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106,108,110],{"_key":25},"DLA-4075-1",{"_key":27},"DLA-4076-1",{"_key":29},"DEBIAN-CVE-2024-56581",{"_key":31},"LSN-0119-1",{"_key":33},"UBUNTU-CVE-2024-56581",{"_key":35},"USN-7379-1",{"_key":37},"USN-7381-1",{"_key":39},"USN-7382-1",{"_key":41},"USN-7387-1",{"_key":43},"USN-7387-2",{"_key":45},"USN-7387-3",{"_key":47},"USN-7388-1",{"_key":49},"USN-7389-1",{"_key":51},"USN-7390-1",{"_key":53},"USN-7391-1",{"_key":55},"USN-7392-1",{"_key":57},"USN-7392-2",{"_key":59},"USN-7392-3",{"_key":61},"USN-7392-4",{"_key":63},"USN-7393-1",{"_key":65},"USN-7401-1",{"_key":67},"USN-7407-1",{"_key":69},"USN-7413-1",{"_key":71},"USN-7421-1",{"_key":73},"USN-7449-1",{"_key":75},"USN-7449-2",{"_key":77},"USN-7450-1",{"_key":79},"USN-7451-1",{"_key":81},"USN-7452-1",{"_key":83},"USN-7453-1",{"_key":85},"USN-7458-1",{"_key":87},"USN-7459-1",{"_key":89},"USN-7459-2",{"_key":91},"USN-7463-1",{"_key":93},"USN-7468-1",{"_key":95},"USN-7523-1",{"_key":97},"USN-7524-1",{"_key":99},"USN-7539-1",{"_key":101},"USN-7540-1",{"_key":103},"USN-8112-1",{"_key":105},"USN-8112-2",{"_key":107},"USN-8112-3",{"_key":109},"USN-8112-4",{"_key":111},"USN-8112-5",[],[114,116],{"_key":115},"USN-7379-2",{"_key":117},"USN-7380-1","2024-12-27T14:23:23.193Z","2026-05-11T20:55:13.617Z","Modified",{"cisa_kev":122,"cisa_ransomware":122,"cisa_vendor":9,"epss_severity":123,"epss_score":124,"severity":125,"severity_score":126,"severity_version":127,"severity_source":128,"severity_vector":129,"severity_status":120},false,"low",0.00012,"high",7.8,"v3.1","cve.org","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[131,137,141,145,149,153,157,161,165],{"url":132,"sources":133,"tags":135},"https://git.kernel.org/stable/c/dfb9fe7de61f34cc241ab3900bdde93341096e0e",[128,134],"nvd",[136],"Patch",{"url":138,"sources":139,"tags":140},"https://git.kernel.org/stable/c/6fd018aa168e472ce35be32296d109db6adb87ea",[128,134],[136],{"url":142,"sources":143,"tags":144},"https://git.kernel.org/stable/c/d2b85ce0561fde894e28fa01bd5d32820d585006",[128,134],[136],{"url":146,"sources":147,"tags":148},"https://git.kernel.org/stable/c/6370db28af9a8ae3bbdfe97f8a48f8f995e144cf",[128,134],[136],{"url":150,"sources":151,"tags":152},"https://git.kernel.org/stable/c/4275ac2741941c9c7c2293619fdbacb9f70ba85b",[128,134],[136],{"url":154,"sources":155,"tags":156},"https://git.kernel.org/stable/c/a6f9e7a0bf1185c9070c0de03bb85eafb9abd650",[128,134],[136],{"url":158,"sources":159,"tags":160},"https://git.kernel.org/stable/c/7c4e39f9d2af4abaf82ca0e315d1fd340456620f",[128,134],[136],{"url":162,"sources":163,"tags":164},"https://lists.debian.org/debian-lts-announce/2025/03/msg00001.html",[128,134],[],{"url":166,"sources":167,"tags":168},"https://lists.debian.org/debian-lts-announce/2025/03/msg00002.html",[128,134],[],[],{"date":171,"score":124,"percentile":172},"2026-06-04",0.0179,[174,178,181,184,187,190,193,196,199,202,204,207,210,212,215,219,222,225,228,231,233,236,239,242,245,248,251,254,257,260,263,265,268,271,274,277,280,283,286,289,292,295,298,301,304,307,310,313,316,319,322,325,328,331,334,337,340,343,346,348,351,354,357,360,363,365,368,370,373,375,377,379,382,385,388,390,392,395,398,401,404,407,410,413,415,418,421,424,427,429],{"date":175,"score":176,"percentile":177},"2025-11-04",0.00046,0.1372,{"date":179,"score":176,"percentile":180},"2025-11-05",0.13748,{"date":182,"score":176,"percentile":183},"2025-11-06",0.13838,{"date":185,"score":176,"percentile":186},"2025-11-07",0.13847,{"date":188,"score":176,"percentile":189},"2025-11-08",0.13852,{"date":191,"score":176,"percentile":192},"2025-11-09",0.13821,{"date":194,"score":176,"percentile":195},"2025-11-10",0.13793,{"date":197,"score":176,"percentile":198},"2025-11-11",0.13815,{"date":200,"score":176,"percentile":201},"2025-11-12",0.1382,{"date":203,"score":176,"percentile":186},"2025-11-13",{"date":205,"score":176,"percentile":206},"2025-11-14",0.13873,{"date":208,"score":176,"percentile":209},"2025-11-15",0.13841,{"date":211,"score":176,"percentile":209},"2025-11-16",{"date":213,"score":176,"percentile":214},"2025-11-17",0.13812,{"date":216,"score":217,"percentile":218},"2025-11-18",0.00086,0.2087,{"date":220,"score":217,"percentile":221},"2025-11-19",0.2088,{"date":223,"score":217,"percentile":224},"2025-11-20",0.2085,{"date":226,"score":176,"percentile":227},"2025-11-21",0.13843,{"date":229,"score":176,"percentile":230},"2025-11-22",0.13836,{"date":232,"score":176,"percentile":201},"2025-11-23",{"date":234,"score":176,"percentile":235},"2025-11-24",0.13783,{"date":237,"score":176,"percentile":238},"2025-11-25",0.13785,{"date":240,"score":176,"percentile":241},"2025-11-26",0.13782,{"date":243,"score":176,"percentile":244},"2025-11-27",0.13781,{"date":246,"score":176,"percentile":247},"2025-11-28",0.13762,{"date":249,"score":176,"percentile":250},"2025-11-29",0.13758,{"date":252,"score":176,"percentile":253},"2025-11-30",0.13767,{"date":255,"score":176,"percentile":256},"2025-12-01",0.13802,{"date":258,"score":176,"percentile":259},"2025-12-02",0.13822,{"date":261,"score":176,"percentile":262},"2025-12-03",0.1385,{"date":264,"score":176,"percentile":201},"2025-12-04",{"date":266,"score":176,"percentile":267},"2025-12-05",0.13889,{"date":269,"score":176,"percentile":270},"2025-12-06",0.13911,{"date":272,"score":176,"percentile":273},"2025-12-07",0.13894,{"date":275,"score":176,"percentile":276},"2025-12-08",0.1391,{"date":278,"score":176,"percentile":279},"2025-12-09",0.13972,{"date":281,"score":176,"percentile":282},"2025-12-10",0.14043,{"date":284,"score":176,"percentile":285},"2025-12-11",0.14073,{"date":287,"score":176,"percentile":288},"2025-12-12",0.14123,{"date":290,"score":176,"percentile":291},"2025-12-13",0.14142,{"date":293,"score":176,"percentile":294},"2025-12-14",0.14103,{"date":296,"score":176,"percentile":297},"2025-12-15",0.14069,{"date":299,"score":176,"percentile":300},"2025-12-16",0.14072,{"date":302,"score":176,"percentile":303},"2025-12-17",0.14173,{"date":305,"score":176,"percentile":306},"2025-12-18",0.14227,{"date":308,"score":176,"percentile":309},"2025-12-19",0.14266,{"date":311,"score":176,"percentile":312},"2025-12-20",0.14241,{"date":314,"score":176,"percentile":315},"2025-12-21",0.14197,{"date":317,"score":176,"percentile":318},"2025-12-22",0.14146,{"date":320,"score":176,"percentile":321},"2025-12-23",0.14139,{"date":323,"score":176,"percentile":324},"2025-12-24",0.14136,{"date":326,"score":176,"percentile":327},"2025-12-25",0.14208,{"date":329,"score":176,"percentile":330},"2025-12-26",0.14168,{"date":332,"score":176,"percentile":333},"2025-12-27",0.1417,{"date":335,"score":176,"percentile":336},"2025-12-28",0.14128,{"date":338,"score":176,"percentile":339},"2025-12-29",0.14048,{"date":341,"score":176,"percentile":342},"2025-12-30",0.14057,{"date":344,"score":176,"percentile":345},"2025-12-31",0.14121,{"date":347,"score":176,"percentile":315},"2026-01-01",{"date":349,"score":176,"percentile":350},"2026-01-02",0.14188,{"date":352,"score":176,"percentile":353},"2026-01-03",0.14157,{"date":355,"score":176,"percentile":356},"2026-01-04",0.14079,{"date":358,"score":176,"percentile":359},"2026-01-05",0.14024,{"date":361,"score":176,"percentile":362},"2026-01-06",0.14034,{"date":364,"score":176,"percentile":300},"2026-01-07",{"date":366,"score":176,"percentile":367},"2026-01-08",0.14132,{"date":369,"score":176,"percentile":324},"2026-01-09",{"date":371,"score":176,"percentile":372},"2026-01-10",0.14147,{"date":374,"score":176,"percentile":285},"2026-01-11",{"date":376,"score":176,"percentile":282},"2026-01-12",{"date":378,"score":176,"percentile":359},"2026-01-13",{"date":380,"score":176,"percentile":381},"2026-01-14",0.14083,{"date":383,"score":176,"percentile":384},"2026-01-15",0.14084,{"date":386,"score":176,"percentile":387},"2026-01-16",0.14129,{"date":389,"score":176,"percentile":318},"2026-01-17",{"date":391,"score":176,"percentile":384},"2026-01-18",{"date":393,"score":176,"percentile":394},"2026-01-19",0.1403,{"date":396,"score":176,"percentile":397},"2026-01-20",0.1401,{"date":399,"score":176,"percentile":400},"2026-01-21",0.14,{"date":402,"score":176,"percentile":403},"2026-01-22",0.13929,{"date":405,"score":176,"percentile":406},"2026-01-23",0.14004,{"date":408,"score":176,"percentile":409},"2026-01-24",0.14049,{"date":411,"score":176,"percentile":412},"2026-01-25",0.13989,{"date":414,"score":176,"percentile":270},"2026-01-26",{"date":416,"score":176,"percentile":417},"2026-01-27",0.13907,{"date":419,"score":176,"percentile":420},"2026-01-28",0.13916,{"date":422,"score":176,"percentile":423},"2026-01-29",0.13885,{"date":425,"score":176,"percentile":426},"2026-01-30",0.13896,{"date":428,"score":176,"percentile":417},"2026-01-31",{"date":430,"score":176,"percentile":431},"2026-02-01",0.13918,[433,438],{"source":128,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":434,"cvss_v4_0":9},{"baseScore":126,"baseSeverity":435,"vectorString":129,"impactScore":436,"exploitabilityScore":437},"HIGH",9.8,4.6,{"source":134,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":439,"cvss_v4_0":9},{"baseScore":126,"baseSeverity":435,"vectorString":129,"impactScore":436,"exploitabilityScore":437},[441,473],{"ecosystem":9,"name":442,"vendor":443,"product":443,"cpe_part":444,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":445},"Linux","linux","a",[446,453,456,459,462,465,468,471],{"version":447,"is_range":448,"range_type":128,"version_start":449,"version_start_type":450,"version_end":451,"version_end_type":452,"fixed_in":9},">= fd708b81d972a0714b02a60eb4792fdbf15868c4, \u003C dfb9fe7de61f34cc241ab3900bdde93341096e0e",true,"fd708b81d972a0714b02a60eb4792fdbf15868c4","including","dfb9fe7de61f34cc241ab3900bdde93341096e0e","excluding",{"version":454,"is_range":448,"range_type":128,"version_start":449,"version_start_type":450,"version_end":455,"version_end_type":452,"fixed_in":9},">= fd708b81d972a0714b02a60eb4792fdbf15868c4, \u003C 6fd018aa168e472ce35be32296d109db6adb87ea","6fd018aa168e472ce35be32296d109db6adb87ea",{"version":457,"is_range":448,"range_type":128,"version_start":449,"version_start_type":450,"version_end":458,"version_end_type":452,"fixed_in":9},">= fd708b81d972a0714b02a60eb4792fdbf15868c4, \u003C d2b85ce0561fde894e28fa01bd5d32820d585006","d2b85ce0561fde894e28fa01bd5d32820d585006",{"version":460,"is_range":448,"range_type":128,"version_start":449,"version_start_type":450,"version_end":461,"version_end_type":452,"fixed_in":9},">= fd708b81d972a0714b02a60eb4792fdbf15868c4, \u003C 6370db28af9a8ae3bbdfe97f8a48f8f995e144cf","6370db28af9a8ae3bbdfe97f8a48f8f995e144cf",{"version":463,"is_range":448,"range_type":128,"version_start":449,"version_start_type":450,"version_end":464,"version_end_type":452,"fixed_in":9},">= fd708b81d972a0714b02a60eb4792fdbf15868c4, \u003C 4275ac2741941c9c7c2293619fdbacb9f70ba85b","4275ac2741941c9c7c2293619fdbacb9f70ba85b",{"version":466,"is_range":448,"range_type":128,"version_start":449,"version_start_type":450,"version_end":467,"version_end_type":452,"fixed_in":9},">= fd708b81d972a0714b02a60eb4792fdbf15868c4, \u003C a6f9e7a0bf1185c9070c0de03bb85eafb9abd650","a6f9e7a0bf1185c9070c0de03bb85eafb9abd650",{"version":469,"is_range":448,"range_type":128,"version_start":449,"version_start_type":450,"version_end":470,"version_end_type":452,"fixed_in":9},">= fd708b81d972a0714b02a60eb4792fdbf15868c4, \u003C 7c4e39f9d2af4abaf82ca0e315d1fd340456620f","7c4e39f9d2af4abaf82ca0e315d1fd340456620f",{"version":472,"is_range":122,"range_type":128,"version_start":472,"version_start_type":450,"version_end":472,"version_end_type":450,"fixed_in":9},"4.15",{"ecosystem":9,"name":474,"vendor":443,"product":475,"cpe_part":476,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":477},"linux kernel","linux_kernel","o",[478,482,486,490,494,498,502],{"version":479,"is_range":448,"range_type":480,"version_start":472,"version_start_type":450,"version_end":481,"version_end_type":452,"fixed_in":9},"gte4.15_lt5.4.287","cpe","5.4.287",{"version":483,"is_range":448,"range_type":480,"version_start":484,"version_start_type":450,"version_end":485,"version_end_type":452,"fixed_in":9},"gte5.5_lt5.10.231","5.5","5.10.231",{"version":487,"is_range":448,"range_type":480,"version_start":488,"version_start_type":450,"version_end":489,"version_end_type":452,"fixed_in":9},"gte5.11_lt5.15.174","5.11","5.15.174",{"version":491,"is_range":448,"range_type":480,"version_start":492,"version_start_type":450,"version_end":493,"version_end_type":452,"fixed_in":9},"gte5.16_lt6.1.120","5.16","6.1.120",{"version":495,"is_range":448,"range_type":480,"version_start":496,"version_start_type":450,"version_end":497,"version_end_type":452,"fixed_in":9},"gte6.2_lt6.6.64","6.2","6.6.64",{"version":499,"is_range":448,"range_type":480,"version_start":500,"version_start_type":450,"version_end":501,"version_end_type":452,"fixed_in":9},"gte6.7_lt6.12.4","6.7","6.12.4",{"version":503,"is_range":122,"range_type":480,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.13:rc1"]