CVE-2024-58094: 
Linux Kernel vulnerability analysis and mitigation

A vulnerability in the Linux kernel's JFS (Journaling File System) implementation was identified and tracked as CVE-2024-58094. The issue specifically relates to the jfs_truncate_nolock function, which lacked proper checks for read-only mode before performing truncation operations (NVD CVE, Red Hat CVE).

The vulnerability exists in the jfs_truncate_nolock function's handling of read-only filesystem operations. The issue occurs in the following call stack: blockwritebegin() → jfswritefailed() → jfstruncate() → jfstruncate_nolock() → txEnd(). The CVSS v3.1 score is 5.5 (Moderate) with a vector string of CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H (Red Hat CVE).

The vulnerability could potentially lead to errors when attempting to write to a read-only filesystem. The impact is primarily focused on availability (High impact on Availability according to CVSS scoring), with no direct impact on Confidentiality or Integrity (Red Hat CVE).

The vulnerability has been resolved by adding a check for read-only mode in the jfs_truncate_nolock function. When the isReadOnly(ip) condition is triggered, the function execution stops, and the xtTruncate function is called with the 'COMMIT_WMAP' flag, preventing modifications in read-only mode (NVD CVE).