Описание
In the Linux kernel, the following vulnerability has been resolved:
ext4: check and assert if marking an no_delete evicting inode dirty
In ext4_evict_inode(), if we evicting an inode in the 'no_delete' path, it cannot be raced by another mark_inode_dirty(). If it happens, someone else may accidentally dirty it without holding inode refcount and probably cause use-after-free issues in the writeback procedure. It's indiscoverable and hard to debug, so add an WARN_ON_ONCE() to check and detect this issue in advance.
In the Linux kernel, the following vulnerability has been resolved:
ext4: check and assert if marking an no_delete evicting inode dirty
In ext4_evict_inode(), if we evicting an inode in the 'no_delete' path, it cannot be raced by another mark_inode_dirty(). If it happens, someone else may accidentally dirty it without holding inode refcount and probably cause use-after-free issues in the writeback procedure. It's indiscoverable and hard to debug, so add an WARN_ON_ONCE() to check and detect this issue in advance.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2022-50377
- https://git.kernel.org/stable/c/0c026f975d24701766cf4ac63995ead9f6d57a59
- https://git.kernel.org/stable/c/318cdc822c63b6e2befcfdc2088378ae6fa18def
- https://git.kernel.org/stable/c/9020f56a3cad1c97b81c7dab2aa67027b59c8f73
- https://git.kernel.org/stable/c/91009e361e8cb2cbd1dc9496cb5fb4f8de3f4b11
- https://git.kernel.org/stable/c/f1ec687ebd1bf146333955b7e209d21508c3ba9f
CVE ID
Связанные уязвимости
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.