Name of the Vulnerable Software and Affected Versions Linux Kernel versions v5.17 through v5.19.1

Description The issue concerns the inode newsize ok() function, where the truncate maximum size is not properly checked. This problem was introduced in version v5.17 and is fixed in version v5.19.2. The actual impact and attack plausibility have not yet been proven.

Recommendations For Linux Kernel versions v5.17 through v5.19.1, update to version v5.19.2 or later to resolve the issue. At the moment, there is no other information about additional mitigation measures for this issue.