CVE-2024-50218: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-50218 is a vulnerability in the Linux kernel's OCFS2 (Oracle Cluster File System 2) component, discovered and reported by Syzbot. The issue was identified in the ocfs2truncateinline function where parameter values passed could be greater than ocfs2maxinlinedatawithxattr, and the start and end parameters of ocfs2truncate_inline are "unsigned int" type, potentially leading to overflow conditions (Kernel Git).

The vulnerability exists in the OCFS2 filesystem code where the ocfs2truncateinline function receives parameters that could exceed the maximum allowed inline data size with extended attributes. The issue stems from two main problems: the parameter value being passed could be greater than ocfs2maxinlinedatawithxattr, and the start and end parameters of ocfs2truncate_inline being defined as "unsigned int" which could lead to overflow conditions. The bug was initially introduced in commit 1afc32b95233 "ocfs2: Write support for inline data" (Kernel Git).

When exploited, this vulnerability could trigger a kernel BUG condition in the ocfs2truncateinline function, potentially leading to system instability or denial of service (NVD).

The issue has been fixed by adding a sanity check for bytestart and bytelen right before ocfs2truncateinline() in ocfs2removeinoderange(). If these values are greater than ocfs2maxinlinedatawithxattr, the function returns -EINVAL. The fix has been implemented in various Linux kernel versions, including 5.15.0-133.144 for Ubuntu 22.04 LTS and 5.4.0-208.228 for Ubuntu 20.04 LTS (Ubuntu Security).