Linux Kernel OCFS2 Journal Assert Trigger Vulnerability

A vulnerability in the OCFS2 file system of the Linux kernel can lead to a crash by triggering an assertion in the journaling layer. This issue occurs during the defragmentation process when the 'move extents' operation is performed. The problem arises because the 'split extent' function, which is called as part of the defragmentation, improperly handles journal operations, leading to a crash. This vulnerability affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability causes a kernel crash, disrupting system operations and potentially leading to a denial of service.

Reproduction

The vulnerability can be reproduced by running the 'defragfs.ocfs2' command, which initiates the defragmentation process on an OCFS2 file system. This process inadvertently triggers the vulnerability by calling 'ocfs2_split_extent()', which mishandles journal operations and causes a crash.

Remediation

Users can apply the official Linux kernel patch available in the Linux kernel stable tree to address this vulnerability.