Linux Stable - Linux kernel stable tree

diff options

author	Jan Kara <jack@suse.cz>	2022-05-18 11:33:29 +0200
committer	Greg Kroah-Hartman <gregkh@linuxfoundation.org>	2022-06-09 10:21:23 +0200
commit	ff4cafa51762da3824881a9000ca421d4b78b138 (patch)
tree	871afff771b7baf4ccff862aee5950a9d230e294 /kernel
parent	da2f05919238c7bdc6e28c79539f55c8355408bb (diff)
download	linux-stable-ff4cafa51762da3824881a9000ca421d4b78b138.tar.gz linux-stable-ff4cafa51762da3824881a9000ca421d4b78b138.tar.bz2 linux-stable-ff4cafa51762da3824881a9000ca421d4b78b138.zip

ext4: avoid cycles in directory h-tree

commit 3ba733f879c2a88910744647e41edeefbc0d92b2 upstream. A maliciously corrupted filesystem can contain cycles in the h-tree stored inside a directory. That can easily lead to the kernel corrupting tree nodes that were already verified under its hands while doing a node split and consequently accessing unallocated memory. Fix the problem by verifying traversed block numbers are unique. Cc: stable@vger.kernel.org Signed-off-by: Jan Kara <jack@suse.cz> Link: https://lore.kernel.org/r/20220518093332.13986-2-jack@suse.cz Signed-off-by: Theodore Ts'o <tytso@mit.edu> Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>

Diffstat (limited to 'kernel')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: