In the Linux kernel, the following vulnerability has been resolved: ceph:
blocklist the kclient when receiving corrupted snap trace When received
corrupted snap trace we don’t know what exactly has happened in MDS side.
And we shouldn’t continue IOs and metadatas access to MDS, which may
corrupt or get incorrect contents. This patch will just block all the
further IO/MDS requests immediately and then evict the kclient itself. The
reason why we still need to evict the kclient just after blocking all the
further IOs is that the MDS could revoke the caps faster.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 20.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-aws | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws-5.15 | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-azure | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-azure | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-azure-5.15 | < any | UNKNOWN |
ubuntu | 22.04 | noarch | linux-azure-fde | < any | UNKNOWN |
ubuntu | 20.04 | noarch | linux-azure-fde-5.15 | < any | UNKNOWN |
git.kernel.org/linus/a68e564adcaa69b0930809fb64d9d5f7d9c32ba9 (6.2-rc7)
git.kernel.org/stable/c/66ec619e4591f8350f99c5269a7ce160cccc7a7c
git.kernel.org/stable/c/a68e564adcaa69b0930809fb64d9d5f7d9c32ba9
launchpad.net/bugs/cve/CVE-2023-52732
nvd.nist.gov/vuln/detail/CVE-2023-52732
security-tracker.debian.org/tracker/CVE-2023-52732
www.cve.org/CVERecord?id=CVE-2023-52732