CVE-2023-53672

Summary

In the Linux kernel, the following vulnerability has been resolved:

btrfs: output extra debug info if we failed to find an inline backref

[BUG] Syzbot reported several warning triggered inside lookup_inline_extent_backref().

[CAUSE] As usual, the reproducer doesn't reliably trigger locally here, but at least we know the WARN_ON() is triggered when an inline backref can not be found, and it can only be triggered when @insert is true. (I.e. inserting a new inline backref, which means the backref should already exist)

[ENHANCEMENT] After the WARN_ON(), dump all the parameters and the extent tree leaf to help debug.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux492104c866cb1b62a11393adccb477f5cd2c7768 < 376b41524b71e494514720bd6114325b0a2ed19caffected
LinuxLinux492104c866cb1b62a11393adccb477f5cd2c7768 < 400e08a16604b534fdd82c5a288fa150d04f5f79affected
LinuxLinux492104c866cb1b62a11393adccb477f5cd2c7768 < 7afbfde45d665953b4d5a42a721e15bf0315d89baffected
LinuxLinux492104c866cb1b62a11393adccb477f5cd2c7768 < b7c3cf2f6c42e6688b1c37215a0b1663f982f915affected
LinuxLinux492104c866cb1b62a11393adccb477f5cd2c7768 < 6994f806c6d1ae8b59344d3700358547f3b3fe1daffected
LinuxLinux492104c866cb1b62a11393adccb477f5cd2c7768 < 28062cd6eda04035d8f6ded2001292ac8b496149affected
LinuxLinux492104c866cb1b62a11393adccb477f5cd2c7768 < e70ba449b04b40584bdabb383d10455397cbf177affected
LinuxLinux492104c866cb1b62a11393adccb477f5cd2c7768 < 7f72f50547b7af4ddf985b07fc56600a4deba281affected
LinuxLinux3.9affected
LinuxLinux0 < 3.9unaffected
LinuxLinux4.14.326 <= 4.14.*unaffected
LinuxLinux4.19.295 <= 4.19.*unaffected
LinuxLinux5.4.257 <= 5.4.*unaffected
LinuxLinux5.10.197 <= 5.10.*unaffected
LinuxLinux5.15.133 <= 5.15.*unaffected
LinuxLinux6.1.55 <= 6.1.*unaffected
LinuxLinux6.5.5 <= 6.5.*unaffected
LinuxLinux6.6 <= *unaffected

Weaknesses

References