| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <bug-199179-13602-ITV6EytK63@https.bugzilla.kernel.org/> Date: Mon, 26 Mar 2018 15:59:54 +0000 From: bugzilla-daemon@...zilla.kernel.org To: linux-ext4@...nel.org Subject: [Bug 199179] Invalid pointer dereference when mounting crafted ext4 image in ext4_process_freed_data https://bugzilla.kernel.org/show_bug.cgi?id=199179 --- Comment #3 from Wen Xu (wen.xu@...ech.edu) --- Thank you for the quick response! By the way, I wonder whether I can get CVE numbers assigned for such kinda issues I reported recently?(In reply to Theodore Tso from comment #2) > Created attachment 274933 [details] > Proposed patch to fix the reported bug. > > Thanks for reporting this bug. The attached should address the problem. > > If the root directory has an i_links_count of zero, then when the file > system is mounted, then when ext4_fill_super() notices the problem and > tries to call iput() the root directory in the error return path, > ext4_evict_inode() will try to free the inode on disk, before all of > the file system structures are set up, and this will result in an OOPS > caused by a NULL pointer dereference. Thank you for the quick response! By the way, I wonder whether I can get CVE numbers assigned for such kinda issues I reported recently? -- You are receiving this mail because: You are watching the assignee of the bug.
Powered by blists - more mailing lists