A flaw in the Linux Kernel found for the XFS file system. When mounting a user-supplied XFS disk image, the out of bounds memory access can happen. It happens for some corner case when data in Log journal of XFS image different from on-disk buffer that appears to be newer (so this is a dirty log case). Reference: https://lore.kernel.org/linux-xfs/20230412214034.GL3223426@dread.disaster.area/T/#m1ebbcd1ad061d2d33bef6f0534a2b014744d152d
Created kernel tracking bugs for this issue: Affects: fedora-all [bug 2187963]
@allarkin Hi Alex, could you also create RHEL7 issues for this CVE? The fix is also applicable for RHEL7, so, this would make sense to also backport it there.
In reply to comment #17: > @allarkin Hi Alex, could you also create RHEL7 issues for this > CVE? The fix is also applicable for RHEL7, so, this would make sense to also > backport it there. Decreased severity of this one from High to Moderate, because: " The C reproducer does not reproduce the issue on latest 8.8/9.2 kernel, neither on Fedora with 6.3-rc7.eln kernel or 9.3 with the 6.3 common kernel." , and also the CVSS=7 is between Moderate and High. More comments about this decrease inside bug 2187446 For Red Hat 7 usually we omit fixes if Moderate, so I set "OOSS". However, do you think if need to fix for rhel7 anyway?
(In reply to Alex from comment #18) > In reply to comment #17: > > @allarkin Hi Alex, could you also create RHEL7 issues for this > > CVE? The fix is also applicable for RHEL7, so, this would make sense to also > > backport it there. > > Decreased severity of this one from High to Moderate, because: > " > The C reproducer does not reproduce the issue on latest 8.8/9.2 kernel, > neither on Fedora with 6.3-rc7.eln kernel or 9.3 with the 6.3 common kernel." > , and also the CVSS=7 is between Moderate and High. > More comments about this decrease inside Red Hatbug 2187446 > > For Red Hat 7 usually we omit fixes if Moderate, so I set "OOSS". > However, do you think if need to fix for rhel7 anyway? Hi Alex, Sorry for late reply, yeah I think this make sense to fix it anyway. The code path exists and fix is quite simple, so make sense to me.
In reply to comment #21: > (In reply to Alex from comment #18) > > In reply to comment #17: > > > @allarkin Hi Alex, could you also create RHEL7 issues for this > > > CVE? The fix is also applicable for RHEL7, so, this would make sense to also > > > backport it there. > > > > Decreased severity of this one from High to Moderate, because: > > " > > The C reproducer does not reproduce the issue on latest 8.8/9.2 kernel, > > neither on Fedora with 6.3-rc7.eln kernel or 9.3 with the 6.3 common kernel." > > , and also the CVSS=7 is between Moderate and High. > > More comments about this decrease inside Red Hatbug 2187446 > > > > For Red Hat 7 usually we omit fixes if Moderate, so I set "OOSS". > > However, do you think if need to fix for rhel7 anyway? > > Hi Alex, > > Sorry for late reply, yeah I think this make sense to fix it anyway. > The code path exists and fix is quite simple, so make sense to me. Ok, filled trackers for rhel9.
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:3708 https://access.redhat.com/errata/RHSA-2023:3708
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2023:3723 https://access.redhat.com/errata/RHSA-2023:3723
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2023:4137 https://access.redhat.com/errata/RHSA-2023:4137
This issue has been addressed in the following products: Red Hat Enterprise Linux 9.0 Extended Update Support Via RHSA-2023:4138 https://access.redhat.com/errata/RHSA-2023:4138
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions Via RHSA-2023:4515 https://access.redhat.com/errata/RHSA-2023:4515
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:4541 https://access.redhat.com/errata/RHSA-2023:4541
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2023:4517 https://access.redhat.com/errata/RHSA-2023:4517
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.6 Extended Update Support Via RHSA-2023:4789 https://access.redhat.com/errata/RHSA-2023:4789
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2023:4817 https://access.redhat.com/errata/RHSA-2023:4817
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.2 Advanced Update Support Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions Red Hat Enterprise Linux 8.2 Telecommunications Update Service Via RHSA-2023:4815 https://access.redhat.com/errata/RHSA-2023:4815
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2023:4961 https://access.redhat.com/errata/RHSA-2023:4961
This issue has been addressed in the following products: Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions Red Hat Enterprise Linux 8.4 Telecommunications Update Service Via RHSA-2023:4962 https://access.redhat.com/errata/RHSA-2023:4962