1882201 – kernel: zero length bvec causing softlockups.

Bug 1882201 - kernel: zero length bvec causing softlockups.

Summary: kernel: zero length bvec causing softlockups.

Keywords:
Status:	CLOSED NOTABUG
Alias:	None
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	---
Assignee:	Red Hat Product Security
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2020-09-24 03:26 UTC by Wade Mealing
Modified:	2021-06-09 10:38 UTC (History)
CC List:	14 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:	2020-09-24 05:03:57 UTC
Embargoed:

Attachments	(Terms of Use)

Description Wade Mealing 2020-09-24 03:26:13 UTC

A flaw was found in the Linux kernels implementation of biovecs ( See https://www.kernel.org/doc/html/latest/block/biovecs.html ) .  A zero-length biovec request issued by the block subsystem could cause the kernel to enter an infinite loop causing a denial of service..  A local attacker with basic privileges to issue requests to a block device can cause a denial of service.

Comment 2 Wade Mealing 2020-09-24 03:26:21 UTC

External References:

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7e24969022cbd61ddc586f14824fc205661bb124
https://www.kernel.org/doc/html/latest/block/biovecs.html

Comment 5 Wade Mealing 2020-09-29 02:56:27 UTC

Moving this to the other flaw bug, because the other one was made earlier.

Note You need to log in before you can comment on or make changes to this bug.