Linux Kernel EROFS File-Backed Mounts Stack Overflow Vulnerability

A vulnerability in the Linux kernel's EROFS (Enhanced Read-Only File System) implementation can lead to a kernel stack overflow. This issue arises from file-backed mounts, where EROFS improperly manages the stacking of file system contexts. The vulnerability is present in the stable version of the Linux kernel that includes the problematic EROFS file-backed mount support.

Impact

The vulnerability could cause a kernel stack overflow, potentially leading to arbitrary code execution or a system crash.

Reproduction

To reproduce this vulnerability, mount an EROFS file system using the file-backed mount option. The file system will incorrectly allow nesting of file system contexts, including its own, without proper management of the stack depth. This can cause the stack depth to exceed the maximum limit, leading to a stack overflow.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for downloading the patched version are available on the Linux kernel official website.