Linux Kernel Block Integrity Buffer Initialization Vulnerability

A vulnerability exists in the Linux kernel's handling of auto-generated integrity buffers for block device writes. The issue arises because the integrity buffer is not fully initialized before being passed to the block device. This oversight can lead to uninitialized memory being exposed to userspace or to individuals with physical access to the storage device. While the integrity buffer's protection information is initialized if generated, and the data is zeroed when PI generation is disabled or the PI tuple size is zero, a gap remains. Specifically, when PI is generated, the PI tuple size is non-zero, but the metadata size exceeds the PI tuple, the excess 'opaque' metadata remains uninitialized. This vulnerability affects the Linux kernel stable tree.

Impact

The vulnerability can be exploited to read uninitialized memory from the integrity buffer, potentially leading to the disclosure of sensitive information.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. Instructions for upgrading the Linux kernel can be found in the official Linux documentation.