kernel: block: initialize integrity buffer to zero before writing it to media

A flaw was found in the Linux kernel, where it initialized the integrity buffer to zero before writing it to media. Metadata added by biointegrityprep uses plain kmalloc, which leads to random kernel memory being written. Protection Information PI metadata is limited to the app tag not used by...

kernel: block: initialize integrity buffer to zero before writing it to media

A flaw was found in the Linux kernel, where it initialized the integrity buffer to zero before writing it to media. Metadata added by biointegrityprep uses plain kmalloc, which leads to random kernel memory being written. Protection Information PI metadata is limited to the app tag not used by...

CVE-2024-43854

The CVE-2024-43854 entry relates to the Linux kernel vulnerability where the integrity buffer used for media writes was not zero-initialized. Root cause: metadata allocated by bio_integrity_prep used plain kmalloc, risking writing random kernel memory into media; PI metadata exposure is limited, ...

CVE-2024-43854 block: initialize integrity buffer to zero before writing it to media

In the Linux kernel, the following vulnerability has been resolved: block: initialize integrity buffer to zero before writing it to media Metadata added by biointegrityprep is using plain kmalloc, which leads to random kernel memory being written media. For PI metadata this is limited to the app...