Linux Kernel ext4 Journal Replay Vulnerability Leading to Null Pointer Dereference

Vulnerability

A vulnerability in the Linux kernel's ext4 file system has been addressed, concerning the handling of the journal inode number during the mounting of crafted ext4 images. After replaying the journal, the journal inode number may change, which is problematic as the journal has been successfully loaded and replayed using the previous inode number. This change can bypass certain checks in the 'ext4_get_journal()' function, potentially causing a null pointer dereference. To mitigate this, the kernel now ignores such changes and ensures the current journal inode number is correctly written to the superblock.

Impact

Exploitation of this vulnerability could lead to a null pointer dereference, causing a kernel crash or potentially allowing for arbitrary code execution in the context of the kernel.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel ext4 Journal Replay Vulnerability Leading to Null Pointer Dereference

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating