Details

[Home]

Issue of the Implementation # K0003

Brief

(fat) Memory allocation failure is not handled in fat_cache_add

Detailed Description

The situation when memory allocation made in fat_cache_add() function fails is not handled (fs/fat/cache.c:153): 

151: spin_unlock(&MSDOS_I(inode)->cache_lru_lock);
152: 
153: tmp = fat_cache_alloc(inode);
154: spin_lock(&MSDOS_I(inode)->cache_lru_lock);

This may result in bad pointer dereference when executing 'cache->fcluster = new->fcluster;' later (fs/fat/cache.c:166).

Component

linux-kernel 2.6.37

References

Problems found by KEDR

Accepted

Kernel Bug Tracker, bug #24622

Status

Fixed in the kernel 3.0

[Home]

»