CVE-2022-49352

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version that includes the fix for the issue described.

Description The issue arises when there is an attempt to set an inode's size to a value larger than its current size, but the ext4 mark inode dirty function fails due to an out-of-memory condition. This can lead to an inconsistent state where the inode's i size and i disksize values do not match, resulting in a warning being triggered when a direct write operation is attempted. The estimated number of potentially affected devices is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations To resolve the issue, modify the ext4 setattr function to set EXT4 I(inode)->i disksize to its old value if ext4 mark inode dirty fails. This ensures that the inode's size remains consistent, preventing the warning from being triggered. For Linux kernel versions prior to the fixed version, apply the above modification to the ext4 setattr function.