Description
In the Linux kernel, the following vulnerability has been resolved: ext4: xattr: fix null pointer deref in ext4_raw_inode() If ext4_get_inode_loc() fails (e.g. if it returns -EFSCORRUPTED), iloc.bh will remain set to NULL. Since ext4_xattr_inode_dec_ref_all() lacks error checking, this will lead to a null pointer dereference in ext4_raw_inode(), called right after ext4_get_inode_loc(). Found by Linux Verification Center (linuxtesting.org) with SVACE.
Product status
76c365fa7e2a8bb85f0190cdb4b8cdc99b2fdce3 (git) before b72a3476f0c97d02f63a6e9fff127348d55436f6
f737418b6de31c962c7192777ee4018906975383 (git) before 3d8d22e75f7edfa0b30ff27330fd6a1285d594c3
cf9291a3449b04688b81e32621e88de8f4314b54 (git) before 190ad0f22ba49f1101182b80e3af50ca2ddfe72f
362a90cecd36e8a5c415966d0b75b04a0270e4dd (git) before b5d942922182e82724b7152cb998f540132885ec
eb59cc31b6ea076021d14b04e7faab1636b87d0e (git) before 5b154e901fda2e98570b8f426a481f5740097dc2
c8e008b60492cf6fd31ef127aea6d02fd3d314cd (git) before ce5f54c065a4a7cbb92787f4f140917112350142
c8e008b60492cf6fd31ef127aea6d02fd3d314cd (git) before b97cb7d6a051aa6ebd57906df0e26e9e36c26d14
6aff941cb0f7d0c897c3698ad2e30672709135e3 (git)
3bc6317033f365ce578eb6039445fb66162722fd (git)
836e625b03a666cf93ff5be328c8cb30336db872 (git)
6.15
Any version before 6.15
5.10.248 (semver)
5.15.198 (semver)
6.1.160 (semver)
6.6.120 (semver)
6.12.64 (semver)
6.18.3 (semver)
6.19 (original_commit_for_fix)
References
git.kernel.org/...c/b72a3476f0c97d02f63a6e9fff127348d55436f6
git.kernel.org/...c/3d8d22e75f7edfa0b30ff27330fd6a1285d594c3
git.kernel.org/...c/190ad0f22ba49f1101182b80e3af50ca2ddfe72f
git.kernel.org/...c/b5d942922182e82724b7152cb998f540132885ec
git.kernel.org/...c/5b154e901fda2e98570b8f426a481f5740097dc2
git.kernel.org/...c/ce5f54c065a4a7cbb92787f4f140917112350142
git.kernel.org/...c/b97cb7d6a051aa6ebd57906df0e26e9e36c26d14