APPLIED: [SRU][Jammy/Kinetic][PATCH 0/1] CVE-2022-48502
Luke Nowakowski-Krijger
luke.nowakowskikrijger at canonical.com
Thu Jul 6 19:25:29 UTC 2023
Applied to jammy:linux master-next and to jammy:linux-hwe-5.19 since
kinetic has gone EOL.
Thanks,
- Luke
On Wed, Jun 28, 2023 at 12:44 PM Yuxuan Luo <yuxuan.luo at canonical.com>
wrote:
> [Impact]
> An issue was discovered in the Linux kernel before 6.2. The ntfs3 subsystem
> does not properly check for correctness during disk reads, leading to an
> out-of-bounds read in ntfs_set_ea in fs/ntfs3/xattr.c.
>
> [Backport]
> It is a clean cherry pick.
>
> [Test]
> Compile and smoke tested.
>
> [Potential Regression]
> Expect very low regression potential.
>
> Konstantin Komarov (1):
> fs/ntfs3: Check fields while reading
>
> fs/ntfs3/index.c | 84 ++++++++++++++++++++++++++++++----
> fs/ntfs3/inode.c | 18 ++++----
> fs/ntfs3/ntfs_fs.h | 4 +-
> fs/ntfs3/run.c | 7 ++-
> fs/ntfs3/xattr.c | 109 +++++++++++++++++++++++++++++----------------
> 5 files changed, 164 insertions(+), 58 deletions(-)
>
> --
> 2.34.1
>
>
> --
> kernel-team mailing list
> kernel-team at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/kernel-team
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/kernel-team/attachments/20230706/279b8508/attachment.html>
More information about the kernel-team
mailing list