Linux Kernel EROFS Volume Label Handling Folio Reference Leak Vulnerability

A vulnerability in the Linux kernel's EROFS (Enhanced Read-Only File System) implementation can lead to folio reference leaks. This issue arises from incorrect early exits in volume label handling, which can be triggered by crafted EROFS images containing valid volume labels. While this vulnerability causes a reference leak, it does not result in system crashes or other severe problems.

Impact

Exploitation of this vulnerability leads to folio reference leaks, which can cause memory management issues by improperly retaining references to memory pages, potentially leading to increased memory usage or other related problems.

Reproduction

To reproduce this vulnerability, create a crafted EROFS image that includes valid volume labels. When this image is processed by the Linux kernel, the volume labels can trigger incorrect early returns in the EROFS handler, causing folio reference leaks.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed. The specific commit that resolves this issue is 3afa4da38802a4cba1c23848a32284e7e57b831b.