First Last Prev Next    This bug is not in your last search results.
Bug 919032 - (CVE-2015-0275) VUL-0: CVE-2015-0275: kernel: fs: ext4: fallocate zero range page size > block size BUG()
(CVE-2015-0275)
VUL-0: CVE-2015-0275: kernel: fs: ext4: fallocate zero range page size > bloc...
Status: RESOLVED FIXED
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents
unspecified
Other Other
: P3 - Medium : Normal
: ---
Assigned To: Security Team bot
Security Team bot
https://smash.suse.de/issue/114155/
CVSSv2:RedHat:CVE-2015-0275:4.7:(AV:L...
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2015-02-23 11:28 UTC by Johannes Segitz
Modified: 2017-09-20 14:44 UTC (History)
3 users (show)

See Also:
Found By: Security Response Team
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Johannes Segitz 2015-02-23 11:28:48 UTC 
OSS:2015/Q1/661

Currently there is a bug in zero range code which causes zero range
calls to only allocate block aligned portion of the range, while
ignoring the rest in some cases.

In some cases, namely if the end of the range is past isize, we do
attempt to preallocate the last nonaligned block. However this might
cause kernel to BUG() in some carefully designed zero range requests on
setups where page size > block size.

Fix: http://www.spinics.net/lists/linux-ext4/msg47193.html

References:
http://www.spinics.net/lists/linux-ext4/msg47193.html
https://bugzilla.redhat.com/show_bug.cgi?id=1193907
http://seclists.org/oss-sec/2015/q1/661
Comment 1 Swamp Workflow Management 2015-02-23 23:01:05 UTC 
bugbot adjusting priority
Comment 2 Jan Kara 2015-04-08 13:19:37 UTC 
Zero range functionality has been added in kernel 3.15-rc1. Thus the only affected branch is openSUSE-13.2. I've pushed the fix there so the bug is done from my side.

Reassigning to security team for tracking.
Comment 3 Marcus Meissner 2016-03-23 08:28:13 UTC 
done
First Last Prev Next    This bug is not in your last search results.