CVE-2024-50202

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> nilfs2: propagate directory read errors from nilfs_find_entry()<br /> <br /> Syzbot reported that a task hang occurs in vcs_open() during a fuzzing<br /> test for nilfs2.<br /> <br /> The root cause of this problem is that in nilfs_find_entry(), which<br /> searches for directory entries, ignores errors when loading a directory<br /> page/folio via nilfs_get_folio() fails.<br /> <br /> If the filesystem images is corrupted, and the i_size of the directory<br /> inode is large, and the directory page/folio is successfully read but<br /> fails the sanity check, for example when it is zero-filled,<br /> nilfs_check_folio() may continue to spit out error messages in bursts.<br /> <br /> Fix this issue by propagating the error to the callers when loading a<br /> page/folio fails in nilfs_find_entry().<br /> <br /> The current interface of nilfs_find_entry() and its callers is outdated<br /> and cannot propagate error codes such as -EIO and -ENOMEM returned via<br /> nilfs_find_entry(), so fix it together.