qiurui
/
Centos-kernel-stream-9
mirror of https://gitlab.com/redhat/centos-stream/src/kernel/centos-stream-9.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
Centos-kernel-stream-9/fs/udf
History
Rado Vrbovsky 908405657d Merge: CVE-2024-50143: udf: fix uninit-value use in udf_get_fileshortad 
MR: https://gitlab.com/redhat/centos-stream/src/kernel/centos-stream-9/-/merge_requests/5706

JIRA: https://issues.redhat.com/browse/RHEL-66420
CVE: CVE-2024-50143

```
udf: fix uninit-value use in udf_get_fileshortad

Check for overflow when computing alen in udf_current_aext to mitigate
later uninit-value use in udf_get_fileshortad KMSAN bug[1].
After applying the patch reproducer did not trigger any issue[2].

[1] https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df
[2] https://syzkaller.appspot.com/x/log.txt?x=10242227980000

Reported-by: syzbot+8901c4560b7ab5c2f9df@syzkaller.appspotmail.com
Closes: https://syzkaller.appspot.com/bug?extid=8901c4560b7ab5c2f9df
Tested-by: syzbot+8901c4560b7ab5c2f9df@syzkaller.appspotmail.com
Suggested-by: Jan Kara <jack@suse.com>
Signed-off-by: Gianfranco Trad <gianf.trad@gmail.com>
Signed-off-by: Jan Kara <jack@suse.cz>
Link: https://patch.msgid.link/20240925074613.8475-3-gianf.trad@gmail.com
(cherry picked from commit 264db9d666ad9a35075cc9ed9ec09d021580fbb1)
```

Signed-off-by: CKI Backport Bot <cki-ci-bot+cki-gitlab-backport-bot@redhat.com>

---

<small>Created 2024-11-07 16:20 UTC by backporter - [KWF FAQ](https://red.ht/kernel_workflow_doc) - [Slack #team-kernel-workflow](https://redhat-internal.slack.com/archives/C04LRUPMJQ5) - [Source](https://gitlab.com/cki-project/kernel-workflow/-/blob/main/webhook/utils/backporter.py) - [Documentation](https://gitlab.com/cki-project/kernel-workflow/-/blob/main/docs/README.backporter.md) - [Report an issue](https://gitlab.com/cki-project/kernel-workflow/-/issues/new?issue%5Btitle%5D=backporter%20webhook%20issue)</small>

Approved-by: Pavel Reichl <preichl@redhat.com>
Approved-by: Chris von Recklinghausen <crecklin@redhat.com>
Approved-by: CKI KWF Bot <cki-ci-bot+kwf-gitlab-com@redhat.com>

Merged-by: Rado Vrbovsky <rvrbovsk@redhat.com>
 		2024-11-25 13:17:38 +00:00
..
Kconfig fs: add CONFIG_BUFFER_HEAD 2024-04-17 10:10:20 +08:00
Makefile
balloc.c
dir.c udf: Get rid of 0-length arrays in struct fileIdentDesc 2023-02-07 10:19:06 -05:00
directory.c udf: replace ll_rw_block() 2023-01-20 15:20:23 +01:00
ecma_167.h udf: Get rid of 0-length arrays in struct fileIdentDesc 2023-02-07 10:19:06 -05:00
file.c fs: port ->setattr() to pass mnt_idmap 2024-10-16 09:07:05 +08:00
ialloc.c fs: port inode_init_owner() to mnt_idmap 2024-10-16 10:45:26 +08:00
inode.c udf: fix uninit-value use in udf_get_fileshortad 2024-11-07 16:20:26 +00:00
lowlevel.c udf: use sb_bdev_nr_blocks 2021-12-06 16:45:27 +08:00
misc.c
namei.c fs: port ->tmpfile() to pass mnt_idmap 2024-10-16 10:45:10 +08:00
osta_udf.h udf: Get rid of 0-length arrays 2023-02-07 10:19:06 -05:00
partition.c
super.c udf: Check LVID earlier 2023-02-07 10:19:06 -05:00
symlink.c fs: port ->getattr() to pass mnt_idmap 2024-10-16 09:37:45 +08:00
truncate.c
udf_i.h
udf_sb.h
udfdecl.h udf: Get rid of 0-length arrays in struct fileIdentDesc 2023-02-07 10:19:06 -05:00
udfend.h
udftime.c
unicode.c