In the Linux kernel, the following vulnerability has been resolved: orangefs: fix xattr related buffer overflow... Willy Tarreau forwarded me a message from Disclosure with the following warning: > The helper `xattr_key()` uses the pointer variable in the loop condition > rather than dereferencing it. As `key` is incremented, it remains non-NULL > (until it runs into unmapped memory), so the loop does not terminate on > valid C strings and will walk memory indefinitely, consuming CPU or hanging > the thread. I easily reproduced this with setfattr and getfattr, causing a kernel oops, hung user…
GHSA-v4qq-9xc6-v286: In the Linux kernel, the following vulnerability has been resolved: orangefs: fix xattr related...
A buffer overflow vulnerability in the Linux kernel's OrangeFS subsystem was resolved, which could cause CPU consumption or thread hanging.