CVE-2022-49174

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been identified, specifically in the ext4 file system. The issue arises when the flex bg feature is enabled, which is the default setting. In this scenario, extents for a given inode may span across blocks from two different block groups. The function ext4 mb mark bb() fails to read the block bitmap again when the extent length boundary overflows to another block group, resulting in a data abort. This can lead to inconsistent block bitmap and bg descriptor free clusters, causing the file system to shut down. The vulnerability can be exploited to cause a data access abort.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.