CVE-2022-50839 jbd2: fix potential buffer head reference count leak

In the Linux kernel, the following vulnerability has been resolved: jbd2: fix potential buffer head reference count leak As in 'jbd2fcwaitbufs' if buffer isn't uptodate, will return -EIO without update 'journal-jfcoff'. But 'jbd2fcreleasebufs' will release buffer head from ‘jfcoff - 1’ if 'bh' is...

CVE-2025-68337

CVE-2025-68337 concerns the Linux kernel: a JBD2/jbd2_journal_get_create_access path could trigger a BUG_ON under file-system corruption, potentially crashing the system. The issue arises when file-system data becomes inconsistent (e.g., block bitmap of a referenced block not set), allowing a blo...

CVE-2025-38337 jbd2: fix data-race and null-ptr-deref in jbd2_journal_dirty_metadata()

In the Linux kernel, the following vulnerability has been resolved: jbd2: fix data-race and null-ptr-deref in jbd2journaldirtymetadata Since handle-htransaction may be a NULL pointer, so we should change it to call ishandleabortedhandle first before dereferencing it. And the following data-race w...

UBUNTU-CVE-2025-37839

In the Linux kernel, the following vulnerability has been resolved: jbd2: remove wrong sb-ssequence check Journal emptiness is not determined by sb-ssequence == 0 but rather by sb-sstart == 0 which is set a few lines above. Furthermore 0 is a valid transaction ID so the check can spuriously...