Volerion logoVolerion
Volerion logoVolerion

Linux Kernel Ext4 Quota Management Error Handling Vulnerability

Vulnerability

A vulnerability in the Linux kernel's ext4 file system has been addressed, related to improper quota management during the mount process. When the function ext4_mark_recovery_complete() encounters an error, it fails to disable the activated quotas. This oversight leads to a memory leak, as the enabled quotas are not properly released. The issue was identified in the error handling path of the ext4 file system's superblock management.

Impact

The vulnerability causes a memory leak by leaving unreferenced quota objects, which can accumulate and potentially lead to memory exhaustion.

Reproduction

The vulnerability can be reproduced by mounting an ext4 file system with quotas enabled. If the mount process encounters an error, the quotas will remain active, causing a memory leak by not releasing the associated quota objects.

Remediation

The vulnerability has been fixed in the Linux kernel. Users should upgrade to the latest version where this issue has been addressed.

Added: Dec 24, 2025, 2:32 PM
Updated: Dec 24, 2025, 2:32 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.6
exploitability
4.3
remediation
7.7
relevance
1.5
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.