CVE-2023-53820

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> loop: loop_set_status_from_info() check before assignment<br /> <br /> In loop_set_status_from_info(), lo-&gt;lo_offset and lo-&gt;lo_sizelimit should<br /> be checked before reassignment, because if an overflow error occurs, the<br /> original correct value will be changed to the wrong value, and it will not<br /> be changed back.<br /> <br /> More, the original patch did not solve the problem, the value was set and<br /> ioctl returned an error, but the subsequent io used the value in the loop<br /> driver, which still caused an alarm:<br /> <br /> loop_handle_cmd<br /> do_req_filebacked<br /> loff_t pos = ((loff_t) blk_rq_pos(rq) iocb.ki_pos = pos