CVE-2023-53421 blk-cgroup: Reinit blkg_iostat_set after clearing in blkcg_reset_stats()

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Reinit blkgiostatset after clearing in blkcgresetstats When blkgalloc is called to allocate a blkcggq structure with the associated blkgiostatset's, there are 2 fields within blkgiostatset that requires proper...

CVE-2023-53421

CVE-2023-53421 affects the Linux kernel blk-cgroup: when blkcg_reset_stats() clears memory for blkg_iostat_set, the fields blkg and sync are not properly re‑initialized, risking a NULL pointer dereference in blkg and potentially a kernel panic (and a lockdep issue in debug builds). The advisory f...

CVE-2024-38663

CVE-2024-38663 (Linux kernel) affects the blk-cgroup iostat/stat reset path. After commit 3b8cc6298724, each iostat instance is added to the blkcg per-CPU list, so blkcg_reset_stats() can’t reset the stat instance by memset(), risking list corruption. The fix is to reset only the counter portion,...

kernel: blk-cgroup: Reinit blkg_iostat_set after clearing in blkcg_reset_stats()

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Reinit blkgiostatset after clearing in blkcgresetstats When blkgalloc is called to allocate a blkcggq structure with the associated blkgiostatset's, there are 2 fields within blkgiostatset that requires proper...