{"vulnerability": "CVE-2024-41000", "sightings": [{"uuid": "3ed81cc7-5f2c-4e2e-84c4-be12de74082e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-41000", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "cd47766f-5293-45eb-b1de-2e50a49758ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-41000", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07", "content": "", "creation_timestamp": "2025-08-14T10:00:00.000000Z"}, {"uuid": "16697c1f-36be-40b8-b387-927cd690494b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-41000", "type": "seen", "source": "https://t.me/cvedetector/736", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-41000 - In the Linux kernel, the following vulnerability h\", \n  \"Content\": \"CVE ID : CVE-2024-41000 \nPublished : July 12, 2024, 1:15 p.m. | 39\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nblock/ioctl: prefer different overflow check  \n  \nRunning syzkaller with the newly reintroduced signed integer overflow  \nsanitizer shows this report:  \n  \n[   62.982337] ------------[ cut here ]------------  \n[   62.985692] cgroup: Invalid name  \n[   62.986211] UBSAN: signed-integer-overflow in ../block/ioctl.c:36:46  \n[   62.989370] 9pnet_fd: p9_fd_create_tcp (7343): problem connecting socket to 127.0.0.1  \n[   62.992992] 9223372036854775807 + 4095 cannot be represented in type 'long long'  \n[   62.997827] 9pnet_fd: p9_fd_create_tcp (7345): problem connecting socket to 127.0.0.1  \n[   62.999369] random: crng reseeded on system resumption  \n[   63.000634] GUP no longer grows the stack in syz-executor.2 (7353): 20002000-20003000 (20001000)  \n[   63.000668] CPU: 0 PID: 7353 Comm: syz-executor.2 Not tainted 6.8.0-rc2-00035-gb3ef86b5a957 #1  \n[   63.000677] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014  \n[   63.000682] Call Trace:  \n[   63.000686]    \n[   63.000731]  dump_stack_lvl+0x93/0xd0  \n[   63.000919]  __get_user_pages+0x903/0xd30  \n[   63.001030]  __gup_longterm_locked+0x153e/0x1ba0  \n[   63.001041]  ? _raw_read_unlock_irqrestore+0x17/0x50  \n[   63.001072]  ? try_get_folio+0x29c/0x2d0  \n[   63.001083]  internal_get_user_pages_fast+0x1119/0x1530  \n[   63.001109]  iov_iter_extract_pages+0x23b/0x580  \n[   63.001206]  bio_iov_iter_get_pages+0x4de/0x1220  \n[   63.001235]  iomap_dio_bio_iter+0x9b6/0x1410  \n[   63.001297]  __iomap_dio_rw+0xab4/0x1810  \n[   63.001316]  iomap_dio_rw+0x45/0xa0  \n[   63.001328]  ext4_file_write_iter+0xdde/0x1390  \n[   63.001372]  vfs_write+0x599/0xbd0  \n[   63.001394]  ksys_write+0xc8/0x190  \n[   63.001403]  do_syscall_64+0xd4/0x1b0  \n[   63.001421]  ? arch_exit_to_user_mode_prepare+0x3a/0x60  \n[   63.001479]  entry_SYSCALL_64_after_hwframe+0x6f/0x77  \n[   63.001535] RIP: 0033:0x7f7fd3ebf539  \n[   63.001551] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05  3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48  \n[   63.001562] RSP: 002b:00007f7fd32570c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001  \n[   63.001584] RAX: ffffffffffffffda RBX: 00007f7fd3ff3f80 RCX: 00007f7fd3ebf539  \n[   63.001590] RDX: 4db6d1e4f7e43360 RSI: 0000000020000000 RDI: 0000000000000004  \n[   63.001595] RBP: 00007f7fd3f1e496 R08: 0000000000000000 R09: 0000000000000000  \n[   63.001599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000  \n[   63.001604] R13: 0000000000000006 R14: 00007f7fd3ff3f80 R15: 00007ffd415ad2b8  \n...  \n[   63.018142] ---[ end trace ]---  \n  \nHistorically, the signed integer overflow sanitizer did not work in the  \nkernel due to its interaction with `-fwrapv` but this has since been  \nchanged [1] in the newest version of Clang; It was re-enabled in the  \nkernel with Commit 557f8c582a9ba8ab (\"ubsan: Reintroduce signed overflow  \nsanitizer\").  \n  \nLet's rework this overflow checking logic to not actually perform an  \noverflow during the check itself, thus avoiding the UBSAN splat.  \n  \n[1]:  \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-12T16:05:13.000000Z"}]}