Home

Description

In the Linux kernel, the following vulnerability has been resolved: ext4: update s_journal_inum if it changes after journal replay When mounting a crafted ext4 image, s_journal_inum may change after journal replay, which is obviously unreasonable because we have successfully loaded and replayed the journal through the old s_journal_inum. And the new s_journal_inum bypasses some of the checks in ext4_get_journal(), which may trigger a null pointer dereference problem. So if s_journal_inum changes after the journal replay, we ignore the change, and rewrite the current journal_inum to the superblock.

PUBLISHED Reserved 2025-05-02 | Published 2025-05-02 | Updated 2026-05-23 | Assigner Linux

Product status

Default status
unaffected

345c0dbf3a30872d9b204db96b5857cd00808cae (git) before 499fef2030fb754c68b1c7cb3a799a3bc1d0d925
affected

345c0dbf3a30872d9b204db96b5857cd00808cae (git) before 70e66bdeae4d0f7c8e87762f425b68aedd5e8955
affected

345c0dbf3a30872d9b204db96b5857cd00808cae (git) before ee0c5277d4fab920bd31345c49e193ecede9ecef
affected

345c0dbf3a30872d9b204db96b5857cd00808cae (git) before 3039d8b8692408438a618fac2776b629852663c3
affected

51890201da4d654f6ca131bc45a0e892bb10de1d (git)
affected

7eff961ca9f364be255d279346517ba0158ec8e3 (git)
affected

a9855260fe8d8680bf8c4f0d8303b696c861e99b (git)
affected

795762468125a6412c089651e74f780bee154118 (git)
affected

2fd4629de51974002f4e9cf1a35a1926dd6c9d99 (git)
affected

3.16.85 (semver) before 3.17
affected

4.4.221 (semver) before 4.5
affected

4.9.221 (semver) before 4.10
affected

4.14.178 (semver) before 4.15
affected

4.19.73 (semver) before 4.20
affected

Default status
affected

5.2
affected

Any version before 5.2
unaffected

5.15.104 (semver)
unaffected

6.1.21 (semver)
unaffected

6.2.8 (semver)
unaffected

6.3 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/499fef2030fb754c68b1c7cb3a799a3bc1d0d925

git.kernel.org/...c/70e66bdeae4d0f7c8e87762f425b68aedd5e8955

git.kernel.org/...c/ee0c5277d4fab920bd31345c49e193ecede9ecef

git.kernel.org/...c/3039d8b8692408438a618fac2776b629852663c3

cve.org (CVE-2023-53091)

nvd.nist.gov (CVE-2023-53091)

Download JSON