CVE-2024-50244: 
Linux Kernel vulnerability analysis and mitigation

CVE-2024-50244 is a vulnerability in the Linux kernel's NTFS3 filesystem implementation, discovered and disclosed in November 2024. The vulnerability specifically affects the ni_clear() function in the filesystem code, where there was a potential access to uninitialized bitmap during the replay process (NVD). The issue affects multiple versions of the Linux kernel, including versions up to 5.15.171, from 5.16 to 6.1.116, from 6.2 to 6.6.60, and from 6.7 to 6.11.7 (CVE).

The vulnerability exists in the fs/ntfs3/frecord.c file within the Linux kernel's NTFS3 filesystem implementation. The issue stems from insufficient checking in the ni_clear() function, where access to uninitialized bitmap could occur during the replay process. The vulnerability has been assigned a CVSS v3.1 Base Score of 5.5 (Medium) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H, indicating local access requirements and potential high impact on availability (NVD).

The vulnerability primarily affects system availability, as indicated by the CVSS metrics showing high impact on availability (A:H) while having no direct impact on confidentiality or integrity. The issue could potentially lead to system instability during NTFS filesystem operations (NVD).

The vulnerability has been patched in the Linux kernel through the addition of a NTFS_FLAGS_LOG_REPLAYING check in the ni_clear() function. The fix prevents access to uninitialized bitmap during the replay process by adding an additional condition to the existing checks (Kernel Patch).