2448704 – (CVE-2026-23252) CVE-2026-23252 kernel: xfs: get rid of the xchk_xfile_*_descr calls

Bug 2448704 (CVE-2026-23252) - CVE-2026-23252 kernel: xfs: get rid of the xchk_xfile_*_descr calls

Summary: CVE-2026-23252 kernel: xfs: get rid of the xchk_xfile_*_descr calls

Keywords:
Status:	NEW
Alias:	CVE-2026-23252
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2026-03-18 18:03 UTC by OSIDB Bzimport
Modified:	2026-03-18 19:17 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2026-03-18 18:03:39 UTC

In the Linux kernel, the following vulnerability has been resolved:

xfs: get rid of the xchk_xfile_*_descr calls

The xchk_xfile_*_descr macros call kasprintf, which can fail to allocate
memory if the formatted string is larger than 16 bytes (or whatever the
nofail guarantees are nowadays).  Some of them could easily exceed that,
and Jiaming Zhang found a few places where that can happen with syzbot.

The descriptions are debugging aids and aren't required to be unique, so
let's just pass in static strings and eliminate this path to failure.
Note this patch touches a number of commits, most of which were merged
between 6.6 and 6.14.

Comment 1 Jon Moroney 2026-03-18 19:15:00 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2026031846-CVE-2026-23252-6bef@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.