AI Score
Confidence
Low
EPSS
Percentile
13.1%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix mb_cache_entry’s e_refcnt leak in ext4_xattr_block_cache_find()
Syzbot reports a warning as follows:
This is because when finding an entry in ext4_xattr_block_cache_find(), if
ext4_sb_bread() returns -ENOMEM, the ce’s e_refcnt, which has already grown
in the __entry_find(), won’t be put away, and eventually trigger the above
issue in mb_cache_destroy() due to reference count leakage.
So call mb_cache_entry_put() on the -ENOMEM error branch as a quick fix.
[
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "b878c8a7f08f",
"lessThan": "9ad75e78747b",
"versionType": "git"
},
{
"status": "affected",
"version": "fb265c9cb49e",
"lessThan": "896a7e7d0d55",
"versionType": "git"
},
{
"status": "affected",
"version": "fb265c9cb49e",
"lessThan": "76dc776153a4",
"versionType": "git"
},
{
"status": "affected",
"version": "fb265c9cb49e",
"lessThan": "681ff9a09acc",
"versionType": "git"
},
{
"status": "affected",
"version": "fb265c9cb49e",
"lessThan": "e941b712e758",
"versionType": "git"
},
{
"status": "affected",
"version": "fb265c9cb49e",
"lessThan": "a95df6f04f2c",
"versionType": "git"
},
{
"status": "affected",
"version": "fb265c9cb49e",
"lessThan": "b37c0edef4e6",
"versionType": "git"
},
{
"status": "affected",
"version": "fb265c9cb49e",
"lessThan": "0c0b4a49d3e7",
"versionType": "git"
}
],
"programFiles": [
"fs/ext4/xattr.c"
],
"defaultStatus": "unaffected"
},
{
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"product": "Linux",
"versions": [
{
"status": "affected",
"version": "5.0"
},
{
"status": "unaffected",
"version": "0",
"lessThan": "5.0",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "4.19.316",
"versionType": "custom",
"lessThanOrEqual": "4.19.*"
},
{
"status": "unaffected",
"version": "5.4.278",
"versionType": "custom",
"lessThanOrEqual": "5.4.*"
},
{
"status": "unaffected",
"version": "5.10.219",
"versionType": "custom",
"lessThanOrEqual": "5.10.*"
},
{
"status": "unaffected",
"version": "5.15.161",
"versionType": "custom",
"lessThanOrEqual": "5.15.*"
},
{
"status": "unaffected",
"version": "6.1.94",
"versionType": "custom",
"lessThanOrEqual": "6.1.*"
},
{
"status": "unaffected",
"version": "6.6.34",
"versionType": "custom",
"lessThanOrEqual": "6.6.*"
},
{
"status": "unaffected",
"version": "6.9.5",
"versionType": "custom",
"lessThanOrEqual": "6.9.*"
},
{
"status": "unaffected",
"version": "6.10",
"versionType": "original_commit_for_fix",
"lessThanOrEqual": "*"
}
],
"programFiles": [
"fs/ext4/xattr.c"
],
"defaultStatus": "affected"
}
]
git.kernel.org/stable/c/0c0b4a49d3e7f49690a6827a41faeffad5df7e21
git.kernel.org/stable/c/681ff9a09accd8a4379f8bd30b7a1641ee19bb3e
git.kernel.org/stable/c/76dc776153a47372719d664e0fc50d6355791abb
git.kernel.org/stable/c/896a7e7d0d555ad8b2b46af0c2fa7de7467f9483
git.kernel.org/stable/c/9ad75e78747b5a50dc5a52f0f8e92e920a653f16
git.kernel.org/stable/c/a95df6f04f2c37291adf26a74205cde0314d4577
git.kernel.org/stable/c/b37c0edef4e66fb21a2fbc211471195a383e5ab8
git.kernel.org/stable/c/e941b712e758f615d311946bf98216e79145ccd9