[Gllug] Partition a 2 TB drive for storing films

Nix nix at esperi.org.uk
Sun Mar 7 16:50:43 UTC 2010 

On 7 Mar 2010, Richard Jones stated:

> On Sun, Mar 07, 2010 at 01:42:18PM +0000, Benjamin Donnachie wrote:
>> On 7 March 2010 13:32, Nix <nix at esperi.org.uk> wrote:
>> > Also, it is probably still possible to feed the kernel a sufficiently
>> > corrupted ext[234] filesystem and have it execute arbitrary code, or
>> > crash (these bugs are still being squashed). But you're not allowing
>> > hostile local users to mount these filesystems so that's not a concern.
>> 
>> Interesting...  Have you got any sources for this to hand?
>
> These do pop up from time to time.  The latest ext3 one was, I think,
> this one from four years ago:
>
> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6053

DoS attacks are relatively common. Spotted via a search of the fs/ext3
history for 'corrupt':

commit de18f3b2d68c1f3481839be760a5ff93f6a9a5e5
Author: Bryan Donlan <bdonlan at gmail.com>
Date:   Thu Apr 2 16:57:15 2009 -0700

    ext3: return -EIO not -ESTALE on directory traversal through deleted inode

commit a21102b55c4f8dfd3adb4a15a34cd62237b46039
Author: Theodore Ts'o <tytso at mit.edu>
Date:   Fri Jan 16 11:13:47 2009 -0500

    ext3: Add sanity check to make_indexed_dir

commit b5ed3112b5f74c8ec1c7aa03a76c596635e85197
Author: Duane Griffin <duaneg at dghda.com>
Date:   Fri Dec 19 20:47:14 2008 +0000

    ext3: ensure fast symlinks are NUL-terminated

commit cdbf6dba28e8e6268c8420857696309470009fd9
Author: Eric Sandeen <sandeen at redhat.com>
Date:   Sat Oct 18 20:28:00 2008 -0700

    ext3: avoid printk floods in the face of directory corruption

commit 3ccc3167b0e5d46ab3bf03e22fbdb7616ce038cd
Author: Duane Griffin <duaneg at dghda.com>
Date:   Fri Jul 25 01:46:26 2008 -0700

    ext3: handle deleting corrupted indirect blocks

[...]

> Here's another one from 2006 affecting ISO 9660 handling (ie. CDs, so
> this is really quite serious):
>
> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5757

Some iso9660 and ufs ones:

commit 2deb1acc653cbd5384b107d050d2deba089db2bd
Author: Jan Kara <jack at suse.cz>
Date:   Wed Apr 30 00:52:33 2008 -0700

    isofs: fix access to unallocated memory when reading corrupted filesystem

commit 817794e0df5fea495396c18878804044436832be
Author: Kirill Kuvaldin <kuvkir at epsmu.com>
Date:   Tue Jul 31 00:38:58 2007 -0700

    isofs: mounting to regular file may succeed

commit b12903f1384cd176a3994a6bf6caf5a482169cc8
Author: Duane Griffin <duaneg at dghda.com>
Date:   Thu Jan 8 22:43:50 2009 +0000

    ufs: ensure fast symlinks are NUL-terminated

commit f33219b7a90c4779a0b59e11fb35ebc4542db328
Author: Duane Griffin <duaneg at dghda.com>
Date:   Thu Jan 8 22:43:49 2009 +0000

    ufs: don't truncate longer ufs2 fast symlinks

(note that one of these at least is a cross-FS implementation error).
-- 
Gllug mailing list  -  Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug

More information about the GLLUG mailing list