[PATCH 0/2] [SRU] [X,B:linux] CVE-2018-13095

[Tim Gardner]

[Impact]
An issue was discovered in fs/xfs/libxfs/xfs_inode_buf.c in the Linux kernel
through 4.17.3. A denial of service (memory corruption and BUG) can occur
for a corrupted xfs image upon encountering an inode that is in extent
format, but has more extents than fit in the inode fork.

[Test Case]
iozone -a, misc rsync's

[Potential regression]
There appears to be little chance of data corruption. The bigger chance is that
some file reads/writes may be refused.