tmpfs can be induced to deadlock
Security researcher Hans Christian Woithe reported CVE-2021-43395 to both us and Oracle. He discovered conditions where any arbitrary user could induce tmpfs to panic with deadlock-detection. This bug tracks our fix for this problem.
Tested using Hans's PoC, which now does not induce a panic. Tested on OmniOS both bare-metal (by Andy Fiddaman) and VM (by Dan McD.). Tested on SmartOS bare-metal (by Dan McD.).
Updated by Electric Monk 4 months ago
- Status changed from New to Closed
- % Done changed from 90 to 100
commit f859e7171bb5db34321e45585839c6c3200ebb90 Author: Dan McDonald <firstname.lastname@example.org> Date: 2022-01-18T17:11:37.000Z 14424 tmpfs can be induced to deadlock Reviewed by: Robert Mustacchi <email@example.com> Reviewed by: Andy Fiddaman <firstname.lastname@example.org> Reviewed by: Mike Zeller <email@example.com> Approved by: Robert Mustacchi <firstname.lastname@example.org>