CVE-2022-49739
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
gfs2: Always check inode size of inline inodes
Check if the inode size of stuffed (inline) inodes is within the allowed range when reading inodes from disk (gfs2_dinode_in()). This prevents us from on-disk corruption.
The two checks in stuffed_readpage() and gfs2_unstuffer_page() that just truncate inline data to the maximum allowed size don't actually make sense, and they can be removed now as well.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | b3b94faa5fe5968827ba0640ee9fba4b3e7f736e < 45df749f827c286adbc951f2a4865b67f0442ba9 | affected |
| Linux | Linux | b3b94faa5fe5968827ba0640ee9fba4b3e7f736e < 4d4cb76636134bf9a0c9c3432dae936f99954586 | affected |
| Linux | Linux | b3b94faa5fe5968827ba0640ee9fba4b3e7f736e < 7c414f6f06e9a3934901b6edc3177ae5a1e07094 | affected |
| Linux | Linux | b3b94faa5fe5968827ba0640ee9fba4b3e7f736e < 46c9088cabd4d0469fdb61ac2a9c5003057fe94d | affected |
| Linux | Linux | b3b94faa5fe5968827ba0640ee9fba4b3e7f736e < d458a0984429c2d47e60254f5bc4119cbafe83a2 | affected |
| Linux | Linux | b3b94faa5fe5968827ba0640ee9fba4b3e7f736e < 70376c7ff31221f1d21db5611d8209e677781d3a | affected |
| Linux | Linux | 2.6.19 | affected |
| Linux | Linux | 0 < 2.6.19 | unaffected |
| Linux | Linux | 4.19.280 <= 4.19.* | unaffected |
| Linux | Linux | 5.4.240 <= 5.4.* | unaffected |
| Linux | Linux | 5.10.177 <= 5.10.* | unaffected |
| Linux | Linux | 5.15.93 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.11 <= 6.1.* | unaffected |
| Linux | Linux | 6.2 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/45df749f827c286adbc951f2a4865b67f0442ba9
- https://git.kernel.org/stable/c/4d4cb76636134bf9a0c9c3432dae936f99954586
- https://git.kernel.org/stable/c/7c414f6f06e9a3934901b6edc3177ae5a1e07094
- https://git.kernel.org/stable/c/46c9088cabd4d0469fdb61ac2a9c5003057fe94d
- https://git.kernel.org/stable/c/d458a0984429c2d47e60254f5bc4119cbafe83a2
- https://git.kernel.org/stable/c/70376c7ff31221f1d21db5611d8209e677781d3a
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.