5172 matches found
CVE-2023-54153
CVE-2023-54153 concerns the Linux kernel ext4 quotas handling. The root cause was that if ext4_mark_recovery_complete() returns an error, the enabling quotas were not turned off, leading to a kmemleak warning during a failed mount. The connected documents confirm a fix approach: introduce a faile...
CVE-2023-54153 ext4: turn quotas off if mount failed after enabling quotas
In the Linux kernel, the following vulnerability has been resolved: ext4: turn quotas off if mount failed after enabling quotas Yi found during a review of the patch "ext4: don't BUG on inconsistent journal feature" that when ext4markrecoverycomplete returns an error value, the error handling pat...
CVE-2022-50782 ext4: fix bug_on in __es_tree_search caused by bad quota inode
In the Linux kernel, the following vulnerability has been resolved: ext4: fix bugon in estreesearch caused by bad quota inode We got a issue as fllows: ================================================================== kernel BUG at fs/ext4/extentsstatus.c:202! invalid opcode: 0000 1 PREEMPT SMP...
CVE-2022-50782 ext4: fix bug_on in __es_tree_search caused by bad quota inode
In the Linux kernel, the following vulnerability has been resolved: ext4: fix bugon in estreesearch caused by bad quota inode We got a issue as fllows: ================================================================== kernel BUG at fs/ext4/extentsstatus.c:202! invalid opcode: 0000 1 PREEMPT SMP...
CVE-2022-50782
CVE-2022-50782 is tied to an ext4 quota bug where a bad quota inode can bypass ext4 inode checks and trigger a BUG_ON in __es_tree_search. The issue chain involves ext4_fill_super -> ext4_enable_quotas -> ext4_iget -> ext4_ext_check_inode and can be exploited when s_usr_quota_inum equals...
CVE-2023-54069 ext4: fix BUG in ext4_mb_new_inode_pa() due to overflow
In the Linux kernel, the following vulnerability has been resolved: ext4: fix BUG in ext4mbnewinodepa due to overflow When we calculate the end position of ext4freeextent, this position may be exactly where ext4lblkt i.e. uint overflows. For example, if acgex.felogical is 4294965248 and...
CVE-2023-54069
CVE-2023-54069 relates to the Linux kernel ext4 allocator (mballoc). The issue is an overflow in ext4_mb_new_inode_pa() that can occur when computing the end position of ext4_free_extent, potentially overflowing ext4_lblk_t (uint). The fix, as described in the publicly provided documents, refacto...
CVE-2023-54069 ext4: fix BUG in ext4_mb_new_inode_pa() due to overflow
In the Linux kernel, the following vulnerability has been resolved: ext4: fix BUG in ext4mbnewinodepa due to overflow When we calculate the end position of ext4freeextent, this position may be exactly where ext4lblkt i.e. uint overflows. For example, if acgex.felogical is 4294965248 and...
CVE-2023-54062 ext4: fix invalid free tracking in ext4_xattr_move_to_block()
In the Linux kernel, the following vulnerability has been resolved: ext4: fix invalid free tracking in ext4xattrmovetoblock In ext4xattrmovetoblock, the value of the extended attribute which we need to move to an external block may be allocated by kvmalloc if the value is stored in an external...
CVE-2023-54062
The CVE concerns the Linux kernel ext4 code path ext4_xattr_move_to_block(), where an extended attribute value may be allocated by kvmalloc() if stored in an external inode. After removing the xattr entry, the code could call kvfree() on a non-kvmalloc’d pointer or leak memory. The fix is to stor...
CVE-2023-54062 ext4: fix invalid free tracking in ext4_xattr_move_to_block()
In the Linux kernel, the following vulnerability has been resolved: ext4: fix invalid free tracking in ext4xattrmovetoblock In ext4xattrmovetoblock, the value of the extended attribute which we need to move to an external block may be allocated by kvmalloc if the value is stored in an external...
CVE-2022-50730 ext4: silence the warning when evicting inode with dioread_nolock
In the Linux kernel, the following vulnerability has been resolved: ext4: silence the warning when evicting inode with dioreadnolock When evicting an inode with default dioreadnolock, it could be raced by the unwritten extents converting kworker after writeback some new allocated dirty blocks. It...
CVE-2022-50730
CVE-2022-50730 affects the Linux kernel's ext4 eviction path: when evicting inodes with dioread_nolock, a corner case warning (WARN_ON_ONCE) could be triggered due to i_io_list handling, potentially following unwritten extents conversions. The issue does not describe a use-after-free vulnerabilit...
CVE-2022-50730 ext4: silence the warning when evicting inode with dioread_nolock
In the Linux kernel, the following vulnerability has been resolved: ext4: silence the warning when evicting inode with dioreadnolock When evicting an inode with default dioreadnolock, it could be raced by the unwritten extents converting kworker after writeback some new allocated dirty blocks. It...
CVE-2023-54021
In the Linux kernel, the following vulnerability has been resolved: ext4: set goal start correctly in ext4mbnormalizerequest We need to set acgex to notify the goal start used in ext4mbfindbygoal. Set acgex instead of acfex in ext4mbnormalizerequest. Besides we should assure goal start is in rang...
CVE-2023-54021
In the Linux kernel, the following vulnerability has been resolved: ext4: set goal start correctly in ext4mbnormalizerequest We need to set acgex to notify the goal start used in ext4mbfindbygoal. Set acgex instead of acfex in ext4mbnormalizerequest. Besides we should assure goal start is in rang...
UBUNTU-CVE-2023-54021
In the Linux kernel, the following vulnerability has been resolved: ext4: set goal start correctly in ext4mbnormalizerequest We need to set acgex to notify the goal start used in ext4mbfindbygoal. Set acgex instead of acfex in ext4mbnormalizerequest. Besides we should assure goal start is in rang...
CVE-2023-54021 ext4: set goal start correctly in ext4_mb_normalize_request
In the Linux kernel, the following vulnerability has been resolved: ext4: set goal start correctly in ext4mbnormalizerequest We need to set acgex to notify the goal start used in ext4mbfindbygoal. Set acgex instead of acfex in ext4mbnormalizerequest. Besides we should assure goal start is in rang...
CVE-2023-54021
CVE-2023-54021 affects the Linux kernel ext4 subsystem. The vulnerability centers on ext4_mb_normalize_request: the code must use ac_g_ex (not ac_f_ex) to communicate the goal start to ext4_mb_find_by_goal, and verify that the goal start lies within the data block range [first_data_block, blocks_...
CVE-2023-54021 ext4: set goal start correctly in ext4_mb_normalize_request
In the Linux kernel, the following vulnerability has been resolved: ext4: set goal start correctly in ext4mbnormalizerequest We need to set acgex to notify the goal start used in ext4mbfindbygoal. Set acgex instead of acfex in ext4mbnormalizerequest. Besides we should assure goal start is in rang...