In the Linux kernel, the following vulnerability has been resolved:
f2fs: explicitly null-terminate the xattr list
When setting an xattr, explicitly null-terminate the xattr list. This eliminates the fragile assumption that the unused xattr space is always zeroed.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Linux_kernel | Linux | * | 4.19.306 (excluding) |
Linux_kernel | Linux | 4.20.0 (including) | 5.4.268 (excluding) |
Linux_kernel | Linux | 5.5.0 (including) | 5.10.209 (excluding) |
Linux_kernel | Linux | 5.11.0 (including) | 5.15.148 (excluding) |
Linux_kernel | Linux | 5.16.0 (including) | 6.1.74 (excluding) |
Linux_kernel | Linux | 6.2.0 (including) | 6.6.13 (excluding) |
Linux_kernel | Linux | 6.7.0 (including) | 6.7.1 (excluding) |