CVE-2022-50845

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> ext4: fix inode leak in ext4_xattr_inode_create() on an error path<br /> <br /> There is issue as follows when do setxattr with inject fault:<br /> <br /> [localhost]# fsck.ext4 -fn /dev/sda<br /> e2fsck 1.46.6-rc1 (12-Sep-2022)<br /> Pass 1: Checking inodes, blocks, and sizes<br /> Pass 2: Checking directory structure<br /> Pass 3: Checking directory connectivity<br /> Pass 4: Checking reference counts<br /> Unattached zero-length inode 15. Clear? no<br /> <br /> Unattached inode 15<br /> Connect to /lost+found? no<br /> <br /> Pass 5: Checking group summary information<br /> <br /> /dev/sda: ********** WARNING: Filesystem still has errors **********<br /> <br /> /dev/sda: 15/655360 files (0.0% non-contiguous), 66755/2621440 blocks<br /> <br /> This occurs in &amp;#39;ext4_xattr_inode_create()&amp;#39;. If &amp;#39;ext4_mark_inode_dirty()&amp;#39;<br /> fails, dropping i_nlink of the inode is needed. Or will lead to inode leak.