Mondoo

Vulnerability Management
Technology
Services

Solutions

Financial Services
Manufacturing
Healthcare

Resources

Blog
Vulnerability Database
Documentation
GitHub

Company

About
Careers
Partners
Contact

Legal

Privacy
Terms
Imprint

CVE-2024-46753 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceCVE-2024-46753

CVE-2024-46753

MEDIUM5.5

btrfs: handle errors from btrfs_dec_ref() properly

Published Sep 18, 2024

Modified 2 months ago

Details

In the Linux kernel, the following vulnerability has been resolved:

btrfs: handle errors from btrfs_dec_ref() properly

In walk_up_proc() we BUG_ON(ret) from btrfs_dec_ref(). This is incorrect, we have proper error handling here, return the error.

References

WEB

https://git.kernel.org/stable/c/0e4840ae09f375381167000ce47424818fcbcc7c

WEB

https://git.kernel.org/stable/c/2c4fe45351e544da4b8f10c74b277117a4fa7869

WEB

https://git.kernel.org/stable/c/5eb178f373b4f16f3b42d55ff88fc94dd95b93b1

WEB

https://git.kernel.org/stable/c/67e4ca7ddc67ef949326b4dc404a9678bbe67d72

WEB

https://git.kernel.org/stable/c/9c8237021b53d52357c0de07a768582fafb2791d

WEB

https://git.kernel.org/stable/c/a7f16a7a709845855cb5a0e080a52bda5873f9de

WEB

https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html

WEB

https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2024-46753

CVSS Analysis

CVSS v3.1

5.5

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

5.5/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Ecosystems

Timeline

PublishedSep 18, 2024

ModifiedJan 5, 2026