CVE-2022-49880

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version

Description The issue is related to the ext4 file system in the Linux kernel. It occurs when the ext4 da release space function is called with an inode that has inline data, leading to a warning being triggered. The problem arises from the ext4 es remove extent function, which attempts to release space from an inode with no reserved data blocks. This can happen when the ext4 da write begin function is called, followed by ext4 create inline data, which sets the EXT4 INODE INLINE DATA flag. The ext4 ext migrate function then sets the extent flag, leading to the eh->eh entries not being zero. The issue can be triggered by a series of function calls, including ext4 da write begin, ext4 da convert inline data to extent, and ext4 writepages. The estimated number of potentially affected devices worldwide is not available.

Recommendations To resolve the issue, forbid inode migration for inodes that have inline data. This can be achieved by modifying the ext4 ext migrate function to check for the presence of inline data before attempting to migrate the inode. Additionally, consider disabling the ext4 da release space function for inodes with inline data to prevent the warning from being triggered.