I don't know if our kernel is vulnerable to this issue : https://bugzilla.redhat.com/show_bug.cgi?id=747942 A flaw was found in the way splitting two extents in ext4_ext_convert_to_initialized() worked. Althrough ex has been updated in memory, it is not dirtied both in ext4_ext_convert_to_initialized() and ext4_ext_insert_extent(). The disk layout is corrupted. Then it will meet with a BUG_ON() when writting at the start of that extent again. Introduced in: 56055d3ae4cc7fa6d2b10885f20269de8a989ed7 Upstream fix: 667eff35a1f56fa74ce98a0c7c29a40adc1ba4e3
Summary: kernel: ext4: ext4_ext_insert_extent() kernel oops => CVE-2011-3638: kernel: ext4: ext4_ext_insert_extent() kernel oops
Yep. fixes merged in SVN, will be part of upcoming 2.6.38.8-7
Depends on: (none) => 3186
There is now a kernel-2.6.38.8-7.mga available in core/updates_testing.
kernel-2.6.38.8-8.mga released to updates.
Status: NEW => RESOLVEDResolution: (none) => FIXED