Re: [PATCH] ext4: Fix KASAN use-after-free in ext4_find_extent

Next message: Nitin Joshi: "[PATCH v3 1/2] platform/x86: thinkpad_acpi: Add support to detect hardware damage detection capability."
Previous message: Al Viro: "Re: [PATCH v2] adfs: fix memory leak in sb-&gt;s_fs_info"
In reply to: &#x4F59;&#x660A;&#x94D6;: "Re: Re: [PATCH] ext4: Fix KASAN use-after-free in ext4_find_extent"
Next in thread: &#x4F59;&#x660A;&#x94D6;: "Re: Re: [PATCH] ext4: Fix KASAN use-after-free in ext4_find_extent"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

From: Baokun Li

Date: Sun Dec 14 2025 - 20:54:39 EST

Hi,

On 2025-12-09 20:27, 余昊铖 wrote:
> Hello,
>
>
> I would like to report a potential security issue in the Linux kernel ext4 filesystem, which I found using a modified syzkaller-based kernel fuzzing tool that I developed.
>
I noticed that your configuration has CONFIG_BLK_DEV_WRITE_MOUNTED enabled.

This setting allows bare writes to an already mounted ext4 filesystem,
meaning certain ext4 metadata (like extent tree blocks) can be modified
without the filesystem being aware of the changes.

Could you please try disabling CONFIG_BLK_DEV_WRITE_MOUNTED and see
if the issue is still reproducible?

Cheers,
Baokun