From: Khalid Elmously <khalid.elmously@canonical.com>
To: Greg KH <gregkh@linuxfoundation.org>
Cc: 999@fuzzymail.xyz, Theodore Ts'o <tytso@mit.edu>, stable@vger.kernel.org
Subject: Re: [CVE-2018-1092][T/X/A/B/C] ext4: fail ext4_iget for root directory if unallocated
Date: Mon, 14 May 2018 02:41:10 -0400 [thread overview]
Message-ID: <20180514064109.GA10148@kbuntu> (raw)
In-Reply-To: <20180514061752.GB9153@kroah.com>
On 2018-05-14 08:17:52 , Greg KH wrote:
> On Mon, May 14, 2018 at 01:27:13AM -0400, Khalid Elmously wrote:
> > From: Theodore Ts'o <tytso@mit.edu>
> >
> > CVE-2018-1092
> >
> > If the root directory has an i_links_count of zero, then when the file
> > system is mounted, then when ext4_fill_super() notices the problem and
> > tries to call iput() the root directory in the error return path,
> > ext4_evict_inode() will try to free the inode on disk, before all of
> > the file system structures are set up, and this will result in an OOPS
> > caused by a NULL pointer dereference.
> >
> > This issue has been assigned CVE-2018-1092.
> >
> > https://bugzilla.kernel.org/show_bug.cgi?id=199179
> > https://bugzilla.redhat.com/show_bug.cgi?id=1560777
> >
> > Reported-by: Wen Xu <wen.xu@gatech.edu>
> > Signed-off-by: Theodore Ts'o <tytso@mit.edu>
> > Cc: stable@vger.kernel.org
> > (cherry-picked from 8e4b5eae5decd9dfe5a4ee369c22028f90ab4c44)
> > Signed-off-by: Khalid Elmously <khalid.elmously@canonical.com>
> > ---
> > fs/ext4/inode.c | 6 ++++++
> > 1 file changed, 6 insertions(+)
>
> Any specific reason you sent a patch that is already included in all of
> the active stable trees, to the stable mailing list?
Well I thought why not apply the patch again for _extra_ protection?
>
> And nice fuzzymail address :)
Thanks :)
Seriously though: I mis-used git-send-email while sending a test patch to myself and ended up CC'ing the stable ML - apologies for the spam.
>
> greg k-h
Khalid
prev parent reply other threads:[~2018-05-14 6:41 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
[not found] <20180514052713.8801-1-khalid.elmously@canonical.com>
2018-05-14 5:27 ` [CVE-2018-1092][T/X/A/B/C] ext4: fail ext4_iget for root directory if unallocated Khalid Elmously
2018-05-14 6:17 ` Greg KH
2018-05-14 6:41 ` Khalid Elmously [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20180514064109.GA10148@kbuntu \
--to=khalid.elmously@canonical.com \
--cc=999@fuzzymail.xyz \
--cc=gregkh@linuxfoundation.org \
--cc=stable@vger.kernel.org \
--cc=tytso@mit.edu \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.