Leakage Issue in Linux Kernel's RAID10 during I/O Recovery Process
CVE-2023-53299
What is CVE-2023-53299?
The Linux Kernel exhibits a vulnerability related to the RAID10 subsystem, where a failure during I/O operations can lead to the leakage of the 'r10bio->remaining' parameter, resulting in potential I/O hangs. Specifically, if the read I/O process encounters an error, the recovery_request_write() function exits without writing the expected data. Consequently, the end_sync_request() is invoked only once, leaving 'remaining' unaccounted for. This oversight poses a risk to data integrity and system stability, necessitating a rapid patch to address the issue by properly decrementing 'remaining' based on the validity of both 'bio' and 'repl_bio' structures.
Affected Version(s)
Linux 24afd80d99f80a79d8824d2805114b8b067e9823
Linux 24afd80d99f80a79d8824d2805114b8b067e9823 < 1d2c6c6e37fe5de11fd01a82badf03390e12df7a
Linux 24afd80d99f80a79d8824d2805114b8b067e9823 < 8c5d5d7ffd1e76734811b8ea5417cf0432b9952c