CVE-2026-43228
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
hfs: Replace BUG_ON with error handling for CNID count checks
In a06ec283e125 next_id, folder_count, and file_count in the super block info were expanded to 64 bits, and BUG_ONs were added to detect overflow. This triggered an error reported by syzbot: if the MDB is corrupted, the BUG_ON is triggered. This patch replaces this mechanism with proper error handling and resolves the syzbot reported bug.
Singed-off-by: Jori Koolstra <jkoolstra@xs4all.nl>
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | a06ec283e125e334155fe13005c76c9f484ce759 < b6536c1ced315fa645576d3a39c6e07f2a472962 | affected |
| Linux | Linux | a06ec283e125e334155fe13005c76c9f484ce759 < b226804532a875c10276168dc55ce752944096bd | affected |
| Linux | Linux | 6.18 | affected |
| Linux | Linux | 0 < 6.18 | unaffected |
| Linux | Linux | 6.19.6 <= 6.19.* | unaffected |
| Linux | Linux | 7.0 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/b6536c1ced315fa645576d3a39c6e07f2a472962
- https://git.kernel.org/stable/c/b226804532a875c10276168dc55ce752944096bd
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.