CVE-2022-50581
Description
In the Linux kernel, the following vulnerability has been resolved:
hfs: fix OOB Read in __hfs_brec_find
Syzbot reported a OOB read bug:
================================================================== BUG: KASAN: slab-out-of-bounds in hfs_strcmp+0x117/0x190 fs/hfs/string.c:84 Read of size 1 at addr ffff88807eb62c4e by task kworker/u4:1/11 CPU: 1 PID: 11 Comm: kworker/u4:1 Not tainted 6.1.0-rc6-syzkaller-00308-g644e9524388a #0 Workqueue: writeback wb_workfn (flush-7:0) Call Trace:
__dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x1b1/0x28e lib/dump_stack.c:106 print_address_description+0x74/0x340 mm/kasan/report.c:284 print_report+0x107/0x1f0 mm/kasan/report.c:395 kasan_report+0xcd/0x100 mm/kasan/report.c:495 hfs_strcmp+0x117/0x190 fs/hfs/string.c:84 __hfs_brec_find+0x213/0x5c0 fs/hfs/bfind.c:75 hfs_brec_find+0x276/0x520 fs/hfs/bfind.c:138 hfs_write_inode+0x34c/0xb40 fs/hfs/inode.c:462 write_inode fs/fs-writeback.c:1440 [inline]
If the input inode of hfs_write_inode() is incorrect: struct inode struct hfs_inode_info struct hfs_cat_key struct hfs_name u8 len # len is greater than HFS_NAMELEN(31) which is the maximum length of an HFS filename
OOB read occurred: hfs_write_inode() hfs_brec_find() __hfs_brec_find() hfs_cat_keycmp() hfs_strcmp() # OOB read occurred due to len is too large
Fix this by adding a Check on len in hfs_write_inode() before calling hfs_brec_find().
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
93- osv-coords92 versionspkg:linux/kernelpkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-64kb&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/kernel-default-base&distro=SUSE%20Manager%20Proxy%20LTS%204.3pkg:rpm/suse/kernel-default-base&distro=SUSE%20Manager%20Server%20LTS%204.3pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP4pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP4pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP5pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Proxy%20LTS%204.3pkg:rpm/suse/kernel-default&distro=SUSE%20Manager%20Server%20LTS%204.3pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/kernel-livepatch-SLE15-SP4_Update_46&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP4pkg:rpm/suse/kernel-livepatch-SLE15-SP5_Update_32&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP5pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Proxy%20LTS%204.3pkg:rpm/suse/kernel-source&distro=SUSE%20Manager%20Server%20LTS%204.3pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%20Proxy%20LTS%204.3pkg:rpm/suse/kernel-syms&distro=SUSE%20Manager%20Server%20LTS%204.3pkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/kernel-zfcpdump&distro=SUSE%20Manager%20Server%20LTS%204.3pkg:rpm/suse/kgraft-patch-SLE12-SP5_Update_74&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5
>= 2.6.12, < 4.9.337+ 91 more
- (no CPE)range: >= 2.6.12, < 4.9.337
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150400.24.184.1.150400.24.94.2
- (no CPE)range: < 5.14.21-150400.24.184.1.150400.24.94.2
- (no CPE)range: < 5.14.21-150500.55.127.1.150500.6.61.1
- (no CPE)range: < 5.14.21-150500.55.127.1.150500.6.61.1
- (no CPE)range: < 5.14.21-150400.24.184.1.150400.24.94.2
- (no CPE)range: < 5.14.21-150400.24.184.1.150400.24.94.2
- (no CPE)range: < 5.14.21-150500.55.127.1.150500.6.61.1
- (no CPE)range: < 5.14.21-150400.24.184.1.150400.24.94.2
- (no CPE)range: < 5.14.21-150500.55.127.1.150500.6.61.1
- (no CPE)range: < 5.14.21-150400.24.184.1.150400.24.94.2
- (no CPE)range: < 5.14.21-150500.55.127.1.150500.6.61.1
- (no CPE)range: < 5.14.21-150400.24.184.1.150400.24.94.2
- (no CPE)range: < 5.14.21-150400.24.184.1.150400.24.94.2
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 4.12.14-122.280.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 4.12.14-122.280.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 4.12.14-122.280.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 1-150400.9.5.1
- (no CPE)range: < 1-150500.11.3.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150400.15.136.1
- (no CPE)range: < 5.14.21-150400.15.136.1
- (no CPE)range: < 5.14.21-150500.13.112.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 4.12.14-122.280.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 4.12.14-122.280.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.15.136.1
- (no CPE)range: < 5.14.21-150400.15.136.1
- (no CPE)range: < 5.14.21-150500.13.112.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 4.12.14-122.280.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 4.12.14-122.280.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 5.14.21-150500.55.127.1
- (no CPE)range: < 5.14.21-150400.24.184.1
- (no CPE)range: < 1-8.5.1
Patches
Vulnerability mechanics
References
9- git.kernel.org/stable/c/2344f17c0a89c181ab1a9fef57fd8c3bddfd6e30nvd
- git.kernel.org/stable/c/367296925c7625c3969d2a78d7a3e1dee161beb5nvd
- git.kernel.org/stable/c/4fd3a11804c8877ff11fec59c5c53f1635331e3envd
- git.kernel.org/stable/c/8c40f2dbae603ef0bd21e87c63f54ec59fd88256nvd
- git.kernel.org/stable/c/8d824e69d9f3fa3121b2dda25053bae71e2460d2nvd
- git.kernel.org/stable/c/90103ccb6e60aa4efe48993d23d6a528472f2233nvd
- git.kernel.org/stable/c/bfc9d8f27f89717431a6aecce42ae230b437433fnvd
- git.kernel.org/stable/c/c886c10a6eddb99923b315f42bf63f448883ef9anvd
- git.kernel.org/stable/c/e9e692917c6e10a7066c7a6d092dcdc3d4e329f3nvd
News mentions
0No linked articles in our index yet.