[SRU][Jammy/Kinetic][PATCH 0/1] CVE-2022-48502
Yuxuan Luo
yuxuan.luo at canonical.com
Wed Jun 28 19:43:27 UTC 2023
[Impact]
An issue was discovered in the Linux kernel before 6.2. The ntfs3 subsystem
does not properly check for correctness during disk reads, leading to an
out-of-bounds read in ntfs_set_ea in fs/ntfs3/xattr.c.
[Backport]
It is a clean cherry pick.
[Test]
Compile and smoke tested.
[Potential Regression]
Expect very low regression potential.
Konstantin Komarov (1):
fs/ntfs3: Check fields while reading
fs/ntfs3/index.c | 84 ++++++++++++++++++++++++++++++----
fs/ntfs3/inode.c | 18 ++++----
fs/ntfs3/ntfs_fs.h | 4 +-
fs/ntfs3/run.c | 7 ++-
fs/ntfs3/xattr.c | 109 +++++++++++++++++++++++++++++----------------
5 files changed, 164 insertions(+), 58 deletions(-)
--
2.34.1
More information about the kernel-team
mailing list