ACK: [SRU Impish,Hirsute,HWE-5.11,OEM-5.10,Focal,Bionic] CVE-2021-4155
Stefan Bader
stefan.bader at canonical.com
Fri Jan 21 09:28:11 UTC 2022
On 20.01.22 15:31, Thadeu Lima de Souza Cascardo wrote:
> [Impact]
> Unprivileged users may leak filesystem data.
>
> [Fix]
> Always use XFS_BMAPI_PREALLOC when calling xfs_alloc_file_space.
> Focal and Bionic backports simply did that as xfs_ioc_space has changed since
> then.
>
> [Test case]
> Doing allocations with XFS_IOC_ALLOCSP ioctl and checking for a leak.
> It was reproduced with unpatched kernels.
>
> [Potential regression]
> XFS users may regress, specially when using XFS specific ioctls/tools.
>
Acked-by: Stefan Bader <stefan.bader at canonical.com>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: OpenPGP_signature
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20220121/0622b370/attachment-0001.sig>
More information about the kernel-team
mailing list