Linux Kernel DM Thin Provisioning Pool Btree Lookup Softlockup Vulnerability

A vulnerability in the Linux kernel's DM thin provisioning module can lead to a softlockup condition. This issue arises during B-tree lookup operations when the metadata becomes corrupted, causing a kernel panic. The problem occurs because the B-tree nodes, which should be in a consistent state, become mixed with stale nodes, creating an infinite loop while the system attempts to access data blocks. The vulnerability is present in the DM thin provisioning target of the Linux kernel.

Impact

Exploitation of this vulnerability causes a kernel panic due to a softlockup, where tasks become unresponsive, potentially leading to a denial of service condition.

Reproduction

The vulnerability can be reproduced by simulating a write failure during a copy-up transaction in the DM thin provisioning pool. This can be done by updating certain nodes on disk while causing a write failure on others, which leads to a broken B-tree structure. When the DM thin module attempts to look up data blocks, it gets trapped in an infinite loop, causing a softlockup.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for downloading the patched kernel can be found on the official Linux kernel website.