Linux Kernel HFS Filesystem Uninitialized Memory Vulnerability in Bitmap Handling

A vulnerability has been identified in the Linux kernel's handling of the HFS filesystem, specifically within the bitmap management functions. The issue arises because the memory allocated for the bitmap is not properly initialized, leading to the potential for uninitialized data to interfere with bitmap operations. This flaw was reported by syzbot and can cause filesystem corruption and driver errors.

Impact

Exploitation of this vulnerability can lead to the use of uninitialized memory, which may cause filesystem corruption and errors in the HFS filesystem driver.

Reproduction

The vulnerability can be reproduced by mounting an HFS filesystem and performing operations that trigger the bitmap management functions, such as writing to files or truncating files. The uninitialized memory issue will manifest as a bug reported by KMSAN, indicating the presence of uninitialized values in the bitmap handling functions.

Remediation

Users can upgrade to the patched version of the Linux kernel, which is available in the Linux kernel stable tree. The patch addresses the vulnerability by changing the memory allocation for the bitmap from kmalloc() to kzalloc(), ensuring that the memory is properly initialized before use.