Linux Kernel Memory Allocation Vulnerability in KASAN Vmalloc Handling

A vulnerability in the Linux kernel's memory allocation for the Kernel Address Sanitizer (KASAN) has been addressed. The issue arose because the function 'kasan_populate_vmalloc()' and its related helpers disregarded the caller's allocation mask (gfp_mask), defaulting to a hardcoded GFP_KERNEL flag. This behavior was inconsistent with the 'vmalloc()' function, which now supports GFP_NOFS and GFP_NOIO allocations. The problem was particularly relevant for XFS file system operations, which use vmalloc with GFP_NOFS, potentially leading to deadlocks. The vulnerability has been fixed by modifying 'kasan_populate_vmalloc()' to accept a gfp_mask parameter, ensuring proper allocation semantics and preventing possible deadlocks.

Impact

The vulnerability could cause deadlocks in systems using the XFS file system, due to improper memory allocation handling that ignored critical flags meant to prevent such situations.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the patched version are available on the Linux kernel official website.