Re: [Bug Report] OOB-read BUG in HFS+ filesystem

From: Matthew Wilcox
Date: Mon Apr 14 2025 - 10:54:05 EST

Next message: Jens Axboe: "Re: [PATCH V2] loop: aio inherit the ioprio of original request"
Previous message: Mark Brown: "Re: [PATCH v6 1/2] pm: runtime: Add new devm functions"
In reply to: Christian Brauner: "Re: [Bug Report] OOB-read BUG in HFS+ filesystem"
Next in thread: David Sterba: "Re: [Bug Report] OOB-read BUG in HFS+ filesystem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, Apr 14, 2025 at 04:18:27PM +0200, Christian Brauner wrote:
> On Mon, Apr 14, 2025 at 09:45:25PM +0800, now4yreal wrote:
> > Dear Linux Security Maintainers,
> > I would like to report a OOB-read vulnerability in the HFS+ file
> > system, which I discovered using our in-house developed kernel fuzzer,
> > Symsyz.
>
> Bug reports from non-official syzbot instances are generally not
> accepted.
>
> hfs and hfsplus are orphaned filesystems since at least 2014. Bug
> reports for such filesystems won't receive much attention from the core
> maintainers.
>
> I'm very very close to putting them on the chopping block as they're
> slowly turning into pointless burdens.

I've tried asking some people who are long term Apple & Linux people,
but haven't been able to find anyone interested in becoming maintainer.
Let's drop both hfs & hfsplus. Ten years of being unmaintained is
long enough.

Next message: Jens Axboe: "Re: [PATCH V2] loop: aio inherit the ioprio of original request"
Previous message: Mark Brown: "Re: [PATCH v6 1/2] pm: runtime: Add new devm functions"
In reply to: Christian Brauner: "Re: [Bug Report] OOB-read BUG in HFS+ filesystem"
Next in thread: David Sterba: "Re: [Bug Report] OOB-read BUG in HFS+ filesystem"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]