Linux Kernel Zone File Readahead Vulnerability in Zonefs by Linux
CVE-2022-49706

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 26 February 2025

Summary

In the Linux kernel, a vulnerability exists within the zonefs implementation that affects how readahead operations are handled for sequential zone files. When a readahead is issued with an offset matching the current file size, the system erroneously sets the iomap type to IOMAP_UNWRITTEN. This misconfiguration prevents the I/O operation from proceeding, while simultaneously calculating the iomap length as zero, leading to unexpected behavior within the iomap_iter() function. As a result, the system can enter an infinite loop during readahead operations. The fix involves correctly interpreting reads beyond the file size as attempts to access unallocated areas, adjusting the iomap type to IOMAP_HOLE, while ensuring that other related functions are split to streamline code management.

Affected Version(s)

Linux 8dcc1a9d90c10fa4143e5c17821082e5e60e46a1 < 355be6131164c5bacf2e810763835aecb6e01fcb

Linux 8dcc1a9d90c10fa4143e5c17821082e5e60e46a1

Linux 8dcc1a9d90c10fa4143e5c17821082e5e60e46a1 < 3a7f05f104347b407e865c10be2675cd833a4e48

References

https://git.kernel.org/stable/c/355be6131164c5bacf2e81076...

https://git.kernel.org/stable/c/c2f71b9bb398e2e573bdc2574...

https://git.kernel.org/stable/c/3a7f05f104347b407e865c10b...

Timeline

Vulnerability published
Feb 26, 2025
Vulnerability Reserved
Feb 26, 2025