Re: [PATCH] jfs: Fix array-index-out-of-bounds in diFree

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: willy@xxxxxxxxxxxxx
Subject: Re: [PATCH] jfs: Fix array-index-out-of-bounds in diFree
From: Jeongjun Park <aha310510@xxxxxxxxx>
Date: Thu, 25 Apr 2024 23:24:34 +0900
Cc: brauner@xxxxxxxxxx, jfs-discussion@xxxxxxxxxxxxxxxxxxxxx, jlayton@xxxxxxxxxx, linux-fsdevel@xxxxxxxxxxxxxxx, linux-kernel@xxxxxxxxxxxxxxx, shaggy@xxxxxxxxxx, syzbot+241c815bda521982cb49@xxxxxxxxxxxxxxxxxxxxxxxxx, syzkaller-bugs@xxxxxxxxxxxxxxxx
In-reply-to: <Zipl4PQ9Q7sBlMCt@casper.infradead.org>

Matthew Wilcox wrote:
> It should be checked earlier than this.  There's this code in
> dbMount().  Why isn't this catching it?

This vulnerability occurs because a very large value can be passed 
to iagp->agstart. So that code doesn't prevent the vulnerability.

Follow-Ups:
- Re: [PATCH] jfs: Fix array-index-out-of-bounds in diFree
  - From: Matthew Wilcox

References:
- Re: [PATCH] jfs: Fix array-index-out-of-bounds in diFree
  - From: Matthew Wilcox

Prev by Date: Re: [PATCH] jfs: Fix array-index-out-of-bounds in diFree
Next by Date: Re: [PATCH] jfs: Fix array-index-out-of-bounds in diFree
Previous by thread: Re: [PATCH] jfs: Fix array-index-out-of-bounds in diFree
Next by thread: Re: [PATCH] jfs: Fix array-index-out-of-bounds in diFree
Index(es):
- Date
- Thread

[Index of Archives] [Linux Ext4 Filesystem] [Union Filesystem] [Filesystem Testing] [Ceph Users] [Ecryptfs] [NTFS 3] [AutoFS] [Kernel Newbies] [Share Photos] [Security] [Netfilter] [Bugtraq] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux Cachefs] [Reiser Filesystem] [Linux RAID] [NTFS 3] [Samba] [Device Mapper] [CEPH Development]

Powered by Linux