1313812 – kernel: Kernel panic when mounting specially crafted ext2 filesystem

Bug 1313812 - kernel: Kernel panic when mounting specially crafted ext2 filesystem

Summary: kernel: Kernel panic when mounting specially crafted ext2 filesystem

Keywords:
Status:	CLOSED NOTABUG
Alias:	None
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:	1322277
Blocks:	1313817
TreeView+	depends on / blocked

Reported:	2016-03-02 11:59 UTC by Adam Mariš
Modified:	2021-02-17 04:14 UTC (History)
CC List:	26 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2016-05-28 15:15:04 UTC
Embargoed:

Attachments	(Terms of Use)
Crash report (1.63 KB, text/plain) 2016-03-02 12:01 UTC, Adam Mariš	no flags	Details
View All

Description Adam Mariš 2016-03-02 11:59:00 UTC

Kernel panic caused by mounting specially crafted ext2 filesystem was found. This issue was tested on linux kernel 3.10, 3.18 and 3.19.

Comment 1 Adam Mariš 2016-03-02 11:59:15 UTC

Acknowledgments:

Name: Hugues Anguelkov

Comment 2 Adam Mariš 2016-03-02 12:01:10 UTC

Created attachment 1132278 [details]
Crash report

Comment 5 Andrej Nemec 2016-03-30 08:03:14 UTC

Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 1322277]

Comment 6 Andrej Nemec 2016-03-30 08:03:35 UTC

Public via:

http://seclists.org/oss-sec/2016/q1/709

Comment 7 Josh Boyer 2016-03-31 12:22:02 UTC

Upstream's stance on this bug:

http://marc.info/?l=linux-ext4&m=145937069606704&w=2

Basically, they plan on doing nothing in the kernel.

The two suggestions of running fsck and mounting with -o errors=continue are feasible, but they would need to be done in userspace.

Comment 8 Vladis Dronov 2016-05-28 15:15:04 UTC

Statement:

This issue affects the Linux kernel packages as shipped with Red Hat Enterprise Linux 5, 6, 7 and MRG-2. This has been rated as having Low security impact, as this is actually not a security flaw but intended kernel reaction. This is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.

Note You need to log in before you can comment on or make changes to this bug.

agordeev
anemec
aquini
bhu
dhoward
esammons
fhrbata
iboverma
jkacur
joelsmith
jross
kernel-mgr
kstutsma
lgoncalv
lwang
matt
mcressma
mguzik
nmurray
pholasek
plougher
rvrbovsk
security-response-team
slawomir
vdronov
williams