lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date:   Sun, 30 Apr 2023 13:59:07 -0400
From:   "Theodore Ts'o" <tytso@....edu>
To:     adilger.kernel@...ger.ca, yebin10@...wei.com, jack@...e.cz,
        Tudor Ambarus <tudor.ambarus@...aro.org>
Cc:     "Theodore Ts'o" <tytso@....edu>, enwlinux@...il.com,
        linux-ext4@...r.kernel.org, linux-kernel@...r.kernel.org,
        joneslee@...gle.com,
        syzbot+bf4bb7731ef73b83a3b4@...kaller.appspotmail.com
Subject: Re: [RESEND PATCH] ext4: fix use-after-free Read in ext4_find_extent for bigalloc + inline


On Thu, 06 Apr 2023 11:16:27 +0000, Tudor Ambarus wrote:
> Syzbot found the following issue:
> loop0: detected capacity change from 0 to 2048
> EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
> ==================================================================
> BUG: KASAN: use-after-free in ext4_ext_binsearch_idx fs/ext4/extents.c:768 [inline]
> BUG: KASAN: use-after-free in ext4_find_extent+0x76e/0xd90 fs/ext4/extents.c:931
> Read of size 4 at addr ffff888073644750 by task syz-executor420/5067
> 
> [...]

Applied, thanks!

[1/1] ext4: fix use-after-free Read in ext4_find_extent for bigalloc + inline
      commit: 835659598c67907b98cd2aa57bb951dfaf675c69

Best regards,
-- 
Theodore Ts'o <tytso@....edu>

Powered by blists - more mailing lists