CVE-2022-50815

Summary

In the Linux kernel, the following vulnerability has been resolved:

ext2: Add sanity checks for group and filesystem size

Add sanity check that filesystem size does not exceed the underlying device size and that group size is big enough so that metadata can fit into it. This avoid trying to mount some crafted filesystems with extremely large group counts.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 40ff52527daec00cf1530c17a95636916ddd3b38affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 321440079763998076b75e0c802524e2218a7d97affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < d766f2d1e3e3bd44024a7f971ffcf8b8fbb7c5d2affected
LinuxLinux2.6.12affected
LinuxLinux0 < 2.6.12unaffected
LinuxLinux5.19.17 <= 5.19.*unaffected
LinuxLinux6.0.3 <= 6.0.*unaffected
LinuxLinux6.1 <= *unaffected

Weaknesses

References