| Summary: |
VUL-0: REJECTED: CVE-2021-46946: kernel: ext4: fix check to prevent false positive report of incorrect used inodes |
| Product: |
[Novell Products] SUSE Security Incidents
|
Reporter: |
SMASH SMASH <smash_bz> |
| Component: |
Incidents | Assignee: |
Security Team bot <security-team> |
| Status: |
RESOLVED
INVALID
|
QA Contact: |
Security Team bot <security-team> |
| Severity: |
Normal
|
|
|
| Priority: |
P3 - Medium
|
CC: |
andrea.mattiazzo, rfrohl, vasant.karasulli
|
| Version: |
unspecified | |
|
| Target Milestone: |
--- | |
|
| Hardware: |
Other | |
|
| OS: |
Other | |
|
| URL: |
https://smash.suse.de/issue/395353/
|
| Whiteboard: |
CVSSv3.1:SUSE:CVE-2021-46946:0.0:(AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:N) |
|
Found By:
|
Security Response Team
|
Services Priority:
|
|
|---|
|
Business Priority:
|
|
Blocker:
|
---
|
|---|
|
Marketing QA Status:
|
---
|
IT Deployment:
|
---
|
|---|
In the Linux kernel, the following vulnerability has been resolved: ext4: fix check to prevent false positive report of incorrect used inodes Commit <50122847007> ("ext4: fix check to prevent initializing reserved inodes") check the block group zero and prevent initializing reserved inodes. But in some special cases, the reserved inode may not all belong to the group zero, it may exist into the second group if we format filesystem below. mkfs.ext4 -b 4096 -g 8192 -N 1024 -I 4096 /dev/sda So, it will end up triggering a false positive report of a corrupted file system. This patch fix it by avoid check reserved inodes if no free inode blocks will be zeroed. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-46946 https://www.cve.org/CVERecord?id=CVE-2021-46946 https://bugzilla.redhat.com/show_bug.cgi?id=2266484 https://lore.kernel.org/linux-cve-announce/20240227184057.2368370-11-gregkh@linuxfoundation.org/T/#u Patch: https://git.kernel.org/stable/c/a149d2a5cabbf6507a7832a1c4fd2593c55fd450