CVE-2023-54021

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> ext4: set goal start correctly in ext4_mb_normalize_request<br /> <br /> We need to set ac_g_ex to notify the goal start used in<br /> ext4_mb_find_by_goal. Set ac_g_ex instead of ac_f_ex in<br /> ext4_mb_normalize_request.<br /> Besides we should assure goal start is in range [first_data_block,<br /> blocks_count) as ext4_mb_initialize_context does.<br /> <br /> [ Added a check to make sure size is less than ar-&gt;pright; otherwise<br /> we could end up passing an underflowed value of ar-&gt;pright - size to<br /> ext4_get_group_no_and_offset(), which will trigger a BUG_ON later on.<br /> - TYT ]