CVE-2024-49880 ext4: fix off by one issue in alloc_flex_gd()

In the Linux kernel, the following vulnerability has been resolved: ext4: fix off by one issue in allocflexgd Wesley reported an issue: ================================================================== EXT4-fs dm-5: resizing filesystem from 7168 to 786432 blocks ------------ cut here -----------...

CVE-2024-49880 ext4: fix off by one issue in alloc_flex_gd()

In the Linux kernel, the following vulnerability has been resolved: ext4: fix off by one issue in allocflexgd Wesley reported an issue: ================================================================== EXT4-fs dm-5: resizing filesystem from 7168 to 786432 blocks ------------ cut here -----------...

CVE-2024-49880

The CVE-2024-49880 entry concerns an off-by-one in ext4 resizing logic (alloc_flex_gd) leading to a kernel BUG in resize operations (resize2fs) when resizing a filesystem. The vulnerability is addressed by a patch that removes the problematic +1 (and adds a WARN_ON_ONCE) to ensure flex_gd->res...

Fedora 31 : e2fsprogs (2020-a724cc7926)

Fixes ----- A maliciously corrupted file systems can trigger buffer overruns in the quota code used by e2fsck. Addresses CVE-2019-5094 E2fsck now checks to make sure the casefold flag is only set on directories, and only when the casefold feature is enabled. E2fsck will not disable the low dtime...

Fedora 21 : e2fsprogs-1.42.12-3.fc21 (2015-2511)

Fix potential buffer overflow in closefs 1193947, CVE-2015-1572 - Fix dumpe2fs segfault with no arguments 1194063 - Don't require fsck prior to resize2fs -P 1170803 Changes e2fsck.conf so that for filesystems with time-based check intervals set in the superblock, these time-based checks will work...