Bug 2300299 (CVE-2024-41016) - CVE-2024-41016 kernel: ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()
Summary: CVE-2024-41016 kernel: ocfs2: strict bound check before memcmp in ocfs2_xattr...
Keywords:
Status: NEW
Alias: CVE-2024-41016
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On: 2300873
Blocks:
TreeView+ depends on / blocked
 
Reported: 2024-07-29 07:20 UTC by OSIDB Bzimport
Modified: 2024-09-19 17:41 UTC (History)
4 users (show)

Fixed In Version: kernel 6.11-rc1
Doc Type: If docs needed, set a value
Doc Text:
A flaw was found in the ocfs2_xattr_find_entry() function in the Linux kernel's Oracle Cluster File System version 2 (OCFS2). This issue arose due to inadequate bounds checking before a memcmp operation, particularly when handling "non-indexed" extended attributes (xattrs) that might request additional space.
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description OSIDB Bzimport 2024-07-29 07:20:51 UTC 
In the Linux kernel, the following vulnerability has been resolved:

ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()

xattr in ocfs2 maybe 'non-indexed', which saved with additional space
requested.  It's better to check if the memory is out of bound before
memcmp, although this possibility mainly comes from crafted poisonous
images.
Comment 1 Mauro Matteo Cascella 2024-07-29 19:09:29 UTC 
Created kernel tracking bugs for this issue:

Affects: fedora-all [bug 2300873]
Note You need to log in before you can comment on or make changes to this bug.