Linux Kernel Bitmap Statistics Handling Vulnerability Leading to General Protection Fault

A vulnerability in the Linux kernel's handling of bitmap statistics can lead to a general protection fault (GPF). This issue arises in the 'md/md-bitmap' component, specifically within the 'bitmap_get_stats' function. The vulnerability affects internal and external bitmaps by improperly validating their storage locations, which can result in accessing non-canonical addresses and causing a GPF. The problem has been observed in several versions of the Linux kernel.

Impact

Exploitation of this vulnerability causes a general protection fault, which can lead to a crash or instability in the system.

Reproduction

The vulnerability can be reproduced by invoking the 'md_bitmap_get_stats' function with a bitmap that has an invalid or non-canonical storage location. This can be done through a process that reads bitmap statistics, such as a custom script or program that interacts with the Linux RAID subsystem.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for upgrading the Linux kernel can be found in the official Linux kernel documentation.