漏洞标题
nfs:传递明确的偏移量/计数以跟踪事件
漏洞描述信息
在Linux内核中,已解决以下漏洞:
nfs: 将明确的偏移量/计数传递给跟踪事件
在没有锁定folio且防止截断并可能导致内核崩溃的NULL ->f_mapping检查的情况下使用nfs_folio_length是不安全的。例如,在运行xfstests generic/065时,并启用所有nfs跟踪点。
遵循XFS跟踪点的模式,传入明确的偏移量和长度。这还有额外的好处,即这些值可以更准确,因为一些用户会触碰部分folio范围。
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
漏洞类别
跨界内存读
漏洞标题
nfs: pass explicit offset/count to trace events
漏洞描述信息
In the Linux kernel, the following vulnerability has been resolved:
nfs: pass explicit offset/count to trace events
nfs_folio_length is unsafe to use without having the folio locked and a
check for a NULL ->f_mapping that protects against truncations and can
lead to kernel crashes. E.g. when running xfstests generic/065 with
all nfs trace points enabled.
Follow the model of the XFS trace points and pass in an explіcit offset
and length. This has the additional benefit that these values can
be more accurate as some of the users touch partial folio ranges.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Linux kernel 安全漏洞
漏洞描述信息
Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于未能传递明确的偏移量或计数。
CVSS信息
N/A
漏洞类别
其他