[SRU,OEM-6.0,0/1] CVE-2023-26606

Message ID	20230516000458.254067-1-cengiz.can@canonical.com
Headers	show Return-Path: <kernel-team-bounces@lists.ubuntu.com> From: Cengiz Can <cengiz.can@canonical.com> To: kernel-team@lists.ubuntu.com Subject: [SRU OEM-6.0 PATCH 0/1] CVE-2023-26606 Date: Tue, 16 May 2023 03:04:58 +0300 Message-Id: <20230516000458.254067-1-cengiz.can@canonical.com> MIME-Version: 1.0 Precedence: list Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: kernel-team-bounces@lists.ubuntu.com Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>
Series	CVE-2023-26606 \| expand [SRU,OEM-6.0,0/1] CVE-2023-26606 [SRU,OEM-6.0,1/1] fs/ntfs3: Fix slab-out-of-bounds read in ntfs_trim_fs

Message ID

20230516000458.254067-1-cengiz.can@canonical.com

Headers

From: Cengiz Can <cengiz.can@canonical.com>
To: kernel-team@lists.ubuntu.com
Subject: [SRU OEM-6.0 PATCH 0/1] CVE-2023-26606
Date: Tue, 16 May 2023 03:04:58 +0300
Message-Id: <20230516000458.254067-1-cengiz.can@canonical.com>
MIME-Version: 1.0
Precedence: list
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: kernel-team-bounces@lists.ubuntu.com
Sender: "kernel-team" <kernel-team-bounces@lists.ubuntu.com>

Series

CVE-2023-26606 | expand

Message

Cengiz Can May 16, 2023, 12:04 a.m. UTC

[Impact]
In the Linux kernel 6.0.8, there is a use-after-free in ntfs_trim_fs in
fs/ntfs3/bitmap.c.

[Fix]
Cherry picked from upstream.

[Test case]
Compile tested only.

[Potential regression]
Low. The fix was already released with other trees for 3 months now.

Abdun Nihaal (1):
  fs/ntfs3: Fix slab-out-of-bounds read in ntfs_trim_fs

 fs/ntfs3/bitmap.c | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

Comments

Andrei Gherzan May 16, 2023, 3:10 p.m. UTC | #1

On 23/05/16 03:04AM, Cengiz Can wrote:
> [Impact]
> In the Linux kernel 6.0.8, there is a use-after-free in ntfs_trim_fs in
> fs/ntfs3/bitmap.c.
> 
> [Fix]
> Cherry picked from upstream.
> 
> [Test case]
> Compile tested only.
> 
> [Potential regression]
> Low. The fix was already released with other trees for 3 months now.
> 
> Abdun Nihaal (1):
>   fs/ntfs3: Fix slab-out-of-bounds read in ntfs_trim_fs
> 
>  fs/ntfs3/bitmap.c | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)
> 
> -- 
> 2.39.2

Acked-by: Andrei Gherzan <andrei.gherzan@canonical.com>

John Cabaj May 17, 2023, 5:36 p.m. UTC | #2

On 5/15/23 7:04 PM, Cengiz Can wrote:
> [Impact]
> In the Linux kernel 6.0.8, there is a use-after-free in ntfs_trim_fs in
> fs/ntfs3/bitmap.c.
> 
> [Fix]
> Cherry picked from upstream.
> 
> [Test case]
> Compile tested only.
> 
> [Potential regression]
> Low. The fix was already released with other trees for 3 months now.
> 
> Abdun Nihaal (1):
>   fs/ntfs3: Fix slab-out-of-bounds read in ntfs_trim_fs
> 
>  fs/ntfs3/bitmap.c | 2 +-
>  1 file changed, 1 insertion(+), 1 deletion(-)
> 

Acked-by: John Cabaj <john.cabaj@canonical.com>

Timo Aaltonen May 18, 2023, 12:02 p.m. UTC | #3

Cengiz Can kirjoitti 16.5.2023 klo 3.04:
> [Impact]
> In the Linux kernel 6.0.8, there is a use-after-free in ntfs_trim_fs in
> fs/ntfs3/bitmap.c.
> 
> [Fix]
> Cherry picked from upstream.
> 
> [Test case]
> Compile tested only.
> 
> [Potential regression]
> Low. The fix was already released with other trees for 3 months now.
> 
> Abdun Nihaal (1):
>    fs/ntfs3: Fix slab-out-of-bounds read in ntfs_trim_fs
> 
>   fs/ntfs3/bitmap.c | 2 +-
>   1 file changed, 1 insertion(+), 1 deletion(-)
> 

applied, thanks