Fixed
Created: Oct 22, 2025
Updated: Oct 26, 2025
Resolved Date: Oct 26, 2025
Found In Version: 10.21.20.1
Fix Version: 10.21.20.17
Severity: Standard
Applicable for: Wind River Linux LTS 21
Component/s: Kernel
In the Linux kernel, the following vulnerability has been resolved:[EOL][EOL]fs: jfs: fix shift-out-of-bounds in dbAllocAG[EOL][EOL]Syzbot found a crash : UBSAN: shift-out-of-bounds in dbAllocAG. The[EOL]underlying bug is the missing check of bmp->db_agl2size. The field can[EOL]be greater than 64 and trigger the shift-out-of-bounds.[EOL][EOL]Fix this bug by adding a check of bmp->db_agl2size in dbMount since this[EOL]field is used in many following functions. The upper bound for this[EOL]field is L2MAXL2SIZE - L2MAXAG, thanks for the help of Dave Kleikamp.[EOL]Note that, for maintenance, I reorganized error handling code of dbMount.
