CVE-2024-49932: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-49932 affects the Linux kernel's BTRFS file system implementation. The vulnerability was discovered when readahead operations on the relocation inode during RAID stripe tree operations could lead to system crashes. The issue affects Linux kernel versions up to (excluding) 6.11.3 (NVD).

The vulnerability occurs during relocation operations in BTRFS when performing readahead on the relocation inode. If the filesystem is backed by a RAID stripe tree, it can receive ENOENT errors due to preallocated extents not being mapped in the RST (RAID Stripe Tree). The readahead operation doesn't properly handle these errors and proceeds to submit invalid reads to the device, triggering an assertion failure in the scatter-gather list code (Kernel Patch). The vulnerability has been assigned a CVSS v3.1 base score of 5.5 MEDIUM (AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H) (NVD).

When exploited, this vulnerability can cause a kernel panic and system crash, leading to a denial of service condition. The issue specifically affects systems using BTRFS with RAID configurations that utilize the stripe tree feature (Kernel Patch).

The vulnerability has been patched in the Linux kernel by modifying the BTRFS code to skip readahead operations when dealing with RAID stripe tree-based filesystems. Users should upgrade to Linux kernel version 6.11.3 or later which includes the fix. The patch implements a check using btrfs_need_stripe_tree_update() to determine if readahead should be skipped (Kernel Patch).