[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-56758":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":80,"related":81,"reserved_at":9,"published_at":96,"modified_at":97,"state":98,"summary":99,"references_raw":108,"kevs":131,"epss":132,"epss_history":135,"metrics":397,"affected":403},"CVE-2024-56758","In the Linux kernel, the following vulnerability has been resolved:\n\nbtrfs: check folio mapping after unlock in relocate_one_folio()\n\nWhen we call btrfs_read_folio() to bring a folio uptodate, we unlock the\nfolio. The result of that is that a different thread can modify the\nmapping (like remove it with invalidate) before we call folio_lock().\nThis results in an invalid page and we need to try again.\n\nIn particular, if we are relocating concurrently with aborting a\ntransaction, this can result in a crash like the following:\n\n  BUG: kernel NULL pointer dereference, address: 0000000000000000\n  PGD 0 P4D 0\n  Oops: 0000 [#1] SMP\n  CPU: 76 PID: 1411631 Comm: kworker/u322:5\n  Workqueue: events_unbound btrfs_reclaim_bgs_work\n  RIP: 0010:set_page_extent_mapped+0x20/0xb0\n  RSP: 0018:ffffc900516a7be8 EFLAGS: 00010246\n  RAX: ffffea009e851d08 RBX: ffffea009e0b1880 RCX: 0000000000000000\n  RDX: 0000000000000000 RSI: ffffc900516a7b90 RDI: ffffea009e0b1880\n  RBP: 0000000003573000 R08: 0000000000000001 R09: ffff88c07fd2f3f0\n  R10: 0000000000000000 R11: 0000194754b575be R12: 0000000003572000\n  R13: 0000000003572fff R14: 0000000000100cca R15: 0000000005582fff\n  FS:  0000000000000000(0000) GS:ffff88c07fd00000(0000) knlGS:0000000000000000\n  CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033\n  CR2: 0000000000000000 CR3: 000000407d00f002 CR4: 00000000007706f0\n  DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000\n  DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400\n  PKRU: 55555554\n  Call Trace:\n  \u003CTASK>\n  ? __die+0x78/0xc0\n  ? page_fault_oops+0x2a8/0x3a0\n  ? __switch_to+0x133/0x530\n  ? wq_worker_running+0xa/0x40\n  ? exc_page_fault+0x63/0x130\n  ? asm_exc_page_fault+0x22/0x30\n  ? set_page_extent_mapped+0x20/0xb0\n  relocate_file_extent_cluster+0x1a7/0x940\n  relocate_data_extent+0xaf/0x120\n  relocate_block_group+0x20f/0x480\n  btrfs_relocate_block_group+0x152/0x320\n  btrfs_relocate_chunk+0x3d/0x120\n  btrfs_reclaim_bgs_work+0x2ae/0x4e0\n  process_scheduled_works+0x184/0x370\n  worker_thread+0xc6/0x3e0\n  ? blk_add_timer+0xb0/0xb0\n  kthread+0xae/0xe0\n  ? flush_tlb_kernel_range+0x90/0x90\n  ret_from_fork+0x2f/0x40\n  ? flush_tlb_kernel_range+0x90/0x90\n  ret_from_fork_asm+0x11/0x20\n  \u003C/TASK>\n\nThis occurs because cleanup_one_transaction() calls\ndestroy_delalloc_inodes() which calls invalidate_inode_pages2() which\ntakes the folio_lock before setting mapping to NULL. We fail to check\nthis, and subsequently call set_extent_mapping(), which assumes that\nmapping != NULL (in fact it asserts that in debug mode)\n\nNote that the \"fixes\" patch here is not the one that introduced the\nrace (the very first iteration of this code from 2009) but a more recent\nchange that made this particular crash happen in practice.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-476","NULL Pointer Dereference","The product dereferences a pointer that it expects to be valid but is NULL.","weakness","Stable","Base","Medium",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78],{"_key":25},"SUSE-SU-2025:01919-1",{"_key":27},"SUSE-SU-2025:01951-1",{"_key":29},"SUSE-SU-2025:01967-1",{"_key":31},"SUSE-SU-2025:1177-1",{"_key":33},"SUSE-SU-2025:1178-1",{"_key":35},"SUSE-SU-2025:1180-1",{"_key":37},"DLA-4328-1",{"_key":39},"DSA-5973-1",{"_key":41},"SUSE-SU-2025:20190-1",{"_key":43},"SUSE-SU-2025:20192-1",{"_key":45},"SUSE-SU-2025:20260-1",{"_key":47},"SUSE-SU-2025:20270-1",{"_key":49},"UBUNTU-CVE-2024-56758",{"_key":51},"DEBIAN-CVE-2024-56758",{"_key":53},"USN-7379-1",{"_key":55},"USN-7381-1",{"_key":57},"USN-7382-1",{"_key":59},"USN-7513-1",{"_key":61},"USN-7513-2",{"_key":63},"USN-7513-3",{"_key":65},"USN-7513-4",{"_key":67},"USN-7513-5",{"_key":69},"USN-7514-1",{"_key":71},"USN-7515-1",{"_key":73},"USN-7515-2",{"_key":75},"USN-7522-1",{"_key":77},"USN-7523-1",{"_key":79},"USN-7524-1",[],[82,83,84,85,87,89,90,91,92,93,94,95],{"_key":25},{"_key":27},{"_key":29},{"_key":86},"USN-7379-2",{"_key":88},"USN-7380-1",{"_key":31},{"_key":33},{"_key":35},{"_key":41},{"_key":43},{"_key":45},{"_key":47},"2025-01-06T16:20:38.942Z","2026-05-23T15:56:00.758Z","Modified",{"cisa_kev":100,"cisa_ransomware":100,"cisa_vendor":9,"epss_severity":101,"epss_score":102,"severity":103,"severity_score":104,"severity_version":105,"severity_source":106,"severity_vector":107,"severity_status":98},false,"low",0.00041,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[109,114,118,123,127],{"url":110,"sources":111,"tags":113},"https://git.kernel.org/stable/c/36679fab54fa7bcffafd469e2c474c1fc4beaee0",[112,106],"cve.org",[],{"url":115,"sources":116,"tags":117},"https://git.kernel.org/stable/c/c7b1bd52a031ad0144d42eef0ba8471ce75122dd",[112,106],[],{"url":119,"sources":120,"tags":121},"https://git.kernel.org/stable/c/d508e56270389b3a16f5b3cf247f4eb1bbad1578",[112,106],[122],"Patch",{"url":124,"sources":125,"tags":126},"https://git.kernel.org/stable/c/3e74859ee35edc33a022c3f3971df066ea0ca6b9",[112,106],[122],{"url":128,"sources":129,"tags":130},"https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html",[112,106],[],[],{"date":133,"score":102,"percentile":134},"2026-06-03",0.12568,[136,140,143,146,149,152,155,158,161,164,167,169,172,175,178,182,185,188,191,194,197,200,203,206,209,212,215,218,220,223,226,229,232,235,238,241,244,247,250,253,256,259,262,265,268,271,274,276,278,281,284,287,290,293,296,299,302,305,308,311,314,316,319,322,325,328,330,333,336,339,341,344,347,350,353,355,358,361,364,367,370,372,375,378,381,383,386,389,391,394],{"date":137,"score":138,"percentile":139},"2025-11-04",0.0007,0.21701,{"date":141,"score":138,"percentile":142},"2025-11-05",0.21702,{"date":144,"score":138,"percentile":145},"2025-11-06",0.2171,{"date":147,"score":138,"percentile":148},"2025-11-07",0.21725,{"date":150,"score":138,"percentile":151},"2025-11-08",0.21733,{"date":153,"score":138,"percentile":154},"2025-11-09",0.21688,{"date":156,"score":138,"percentile":157},"2025-11-10",0.21626,{"date":159,"score":138,"percentile":160},"2025-11-11",0.21651,{"date":162,"score":138,"percentile":163},"2025-11-12",0.21708,{"date":165,"score":138,"percentile":166},"2025-11-13",0.21721,{"date":168,"score":138,"percentile":145},"2025-11-14",{"date":170,"score":138,"percentile":171},"2025-11-15",0.21695,{"date":173,"score":138,"percentile":174},"2025-11-16",0.21645,{"date":176,"score":138,"percentile":177},"2025-11-17",0.21606,{"date":179,"score":180,"percentile":181},"2025-11-18",0.00067,0.16419,{"date":183,"score":180,"percentile":184},"2025-11-19",0.16431,{"date":186,"score":180,"percentile":187},"2025-11-20",0.16406,{"date":189,"score":138,"percentile":190},"2025-11-21",0.21575,{"date":192,"score":138,"percentile":193},"2025-11-22",0.21569,{"date":195,"score":138,"percentile":196},"2025-11-23",0.21534,{"date":198,"score":138,"percentile":199},"2025-11-24",0.21505,{"date":201,"score":138,"percentile":202},"2025-11-25",0.21489,{"date":204,"score":138,"percentile":205},"2025-11-26",0.21478,{"date":207,"score":138,"percentile":208},"2025-11-27",0.2144,{"date":210,"score":138,"percentile":211},"2025-11-28",0.21416,{"date":213,"score":138,"percentile":214},"2025-11-29",0.21402,{"date":216,"score":138,"percentile":217},"2025-11-30",0.21393,{"date":219,"score":138,"percentile":208},"2025-12-01",{"date":221,"score":138,"percentile":222},"2025-12-02",0.21459,{"date":224,"score":138,"percentile":225},"2025-12-03",0.21468,{"date":227,"score":138,"percentile":228},"2025-12-04",0.21409,{"date":230,"score":138,"percentile":231},"2025-12-05",0.21452,{"date":233,"score":138,"percentile":234},"2025-12-06",0.21449,{"date":236,"score":138,"percentile":237},"2025-12-07",0.21422,{"date":239,"score":138,"percentile":240},"2025-12-08",0.21434,{"date":242,"score":138,"percentile":243},"2025-12-09",0.21485,{"date":245,"score":138,"percentile":246},"2025-12-10",0.2156,{"date":248,"score":138,"percentile":249},"2025-12-11",0.21601,{"date":251,"score":138,"percentile":252},"2025-12-12",0.21615,{"date":254,"score":138,"percentile":255},"2025-12-13",0.2162,{"date":257,"score":138,"percentile":258},"2025-12-14",0.21588,{"date":260,"score":138,"percentile":261},"2025-12-15",0.21566,{"date":263,"score":138,"percentile":264},"2025-12-16",0.21597,{"date":266,"score":138,"percentile":267},"2025-12-17",0.21672,{"date":269,"score":138,"percentile":270},"2025-12-18",0.21756,{"date":272,"score":138,"percentile":273},"2025-12-19",0.21779,{"date":275,"score":138,"percentile":270},"2025-12-20",{"date":277,"score":138,"percentile":142},"2025-12-21",{"date":279,"score":138,"percentile":280},"2025-12-22",0.21669,{"date":282,"score":138,"percentile":283},"2025-12-23",0.21665,{"date":285,"score":138,"percentile":286},"2025-12-24",0.21683,{"date":288,"score":138,"percentile":289},"2025-12-25",0.21763,{"date":291,"score":138,"percentile":292},"2025-12-26",0.21744,{"date":294,"score":138,"percentile":295},"2025-12-27",0.21752,{"date":297,"score":138,"percentile":298},"2025-12-28",0.21705,{"date":300,"score":138,"percentile":301},"2025-12-29",0.21667,{"date":303,"score":138,"percentile":304},"2025-12-30",0.21648,{"date":306,"score":138,"percentile":307},"2025-12-31",0.21707,{"date":309,"score":138,"percentile":310},"2026-01-01",0.21798,{"date":312,"score":138,"percentile":313},"2026-01-02",0.21795,{"date":315,"score":138,"percentile":273},"2026-01-03",{"date":317,"score":138,"percentile":318},"2026-01-04",0.21678,{"date":320,"score":138,"percentile":321},"2026-01-05",0.21671,{"date":323,"score":138,"percentile":324},"2026-01-06",0.21686,{"date":326,"score":138,"percentile":327},"2026-01-07",0.21722,{"date":329,"score":138,"percentile":273},"2026-01-08",{"date":331,"score":138,"percentile":332},"2026-01-09",0.21771,{"date":334,"score":138,"percentile":335},"2026-01-10",0.2175,{"date":337,"score":138,"percentile":338},"2026-01-11",0.21719,{"date":340,"score":138,"percentile":324},"2026-01-12",{"date":342,"score":138,"percentile":343},"2026-01-13",0.21662,{"date":345,"score":138,"percentile":346},"2026-01-14",0.21724,{"date":348,"score":138,"percentile":349},"2026-01-15",0.21729,{"date":351,"score":138,"percentile":352},"2026-01-16",0.21759,{"date":354,"score":138,"percentile":289},"2026-01-17",{"date":356,"score":138,"percentile":357},"2026-01-18",0.21709,{"date":359,"score":138,"percentile":360},"2026-01-19",0.21658,{"date":362,"score":138,"percentile":363},"2026-01-20",0.21638,{"date":365,"score":138,"percentile":366},"2026-01-21",0.21599,{"date":368,"score":138,"percentile":369},"2026-01-22",0.21579,{"date":371,"score":138,"percentile":280},"2026-01-23",{"date":373,"score":138,"percentile":374},"2026-01-24",0.21691,{"date":376,"score":138,"percentile":377},"2026-01-25",0.21611,{"date":379,"score":138,"percentile":380},"2026-01-26",0.215,{"date":382,"score":138,"percentile":202},"2026-01-27",{"date":384,"score":138,"percentile":385},"2026-01-28",0.21491,{"date":387,"score":138,"percentile":388},"2026-01-29",0.21451,{"date":390,"score":138,"percentile":231},"2026-01-30",{"date":392,"score":138,"percentile":393},"2026-01-31",0.21457,{"date":395,"score":138,"percentile":396},"2026-02-01",0.21498,[398],{"source":106,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":399,"cvss_v4_0":9},{"baseScore":104,"baseSeverity":400,"vectorString":107,"impactScore":401,"exploitabilityScore":402},"MEDIUM",6,4.6,[404,437],{"ecosystem":9,"name":405,"vendor":406,"product":406,"cpe_part":407,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":408},"Linux","linux","a",[409,416,420,423,426,428,432,436],{"version":410,"is_range":411,"range_type":112,"version_start":412,"version_start_type":413,"version_end":414,"version_end_type":415,"fixed_in":9},">= 08daa38ca212d87f77beae839bc9be71079c7abf, \u003C 36679fab54fa7bcffafd469e2c474c1fc4beaee0",true,"08daa38ca212d87f77beae839bc9be71079c7abf","including","36679fab54fa7bcffafd469e2c474c1fc4beaee0","excluding",{"version":417,"is_range":411,"range_type":112,"version_start":418,"version_start_type":413,"version_end":419,"version_end_type":415,"fixed_in":9},">= e7f1326cc24e22b38afc3acd328480a1183f9e79, \u003C c7b1bd52a031ad0144d42eef0ba8471ce75122dd","e7f1326cc24e22b38afc3acd328480a1183f9e79","c7b1bd52a031ad0144d42eef0ba8471ce75122dd",{"version":421,"is_range":411,"range_type":112,"version_start":418,"version_start_type":413,"version_end":422,"version_end_type":415,"fixed_in":9},">= e7f1326cc24e22b38afc3acd328480a1183f9e79, \u003C d508e56270389b3a16f5b3cf247f4eb1bbad1578","d508e56270389b3a16f5b3cf247f4eb1bbad1578",{"version":424,"is_range":411,"range_type":112,"version_start":418,"version_start_type":413,"version_end":425,"version_end_type":415,"fixed_in":9},">= e7f1326cc24e22b38afc3acd328480a1183f9e79, \u003C 3e74859ee35edc33a022c3f3971df066ea0ca6b9","3e74859ee35edc33a022c3f3971df066ea0ca6b9",{"version":427,"is_range":100,"range_type":112,"version_start":427,"version_start_type":413,"version_end":427,"version_end_type":413,"fixed_in":9},"9d1e020ed9649cf140fcfafd052cfdcce9e9d67d",{"version":429,"is_range":411,"range_type":112,"version_start":430,"version_start_type":413,"version_end":431,"version_end_type":415,"fixed_in":9},">= 6.1.54, \u003C 6.1.141","6.1.54","6.1.141",{"version":433,"is_range":411,"range_type":112,"version_start":434,"version_start_type":413,"version_end":435,"version_end_type":415,"fixed_in":9},">= 6.5.4, \u003C 6.6","6.5.4","6.6",{"version":435,"is_range":100,"range_type":112,"version_start":435,"version_start_type":413,"version_end":435,"version_end_type":413,"fixed_in":9},{"ecosystem":9,"name":438,"vendor":406,"product":439,"cpe_part":440,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":441},"linux kernel","linux_kernel","o",[442,446,449,451,453,455],{"version":443,"is_range":411,"range_type":444,"version_start":430,"version_start_type":413,"version_end":445,"version_end_type":415,"fixed_in":9},"gte6.1.54_lt6.2","cpe","6.2",{"version":447,"is_range":411,"range_type":444,"version_start":434,"version_start_type":413,"version_end":448,"version_end_type":415,"fixed_in":9},"gte6.5.4_lt6.12.8","6.12.8",{"version":450,"is_range":100,"range_type":444,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.13:rc1",{"version":452,"is_range":100,"range_type":444,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.13:rc2",{"version":454,"is_range":100,"range_type":444,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.13:rc3",{"version":456,"is_range":100,"range_type":444,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.13:rc4"]