In the Linux kernel, the following vulnerability has been...
Moderate severity
Unreviewed
Published
Nov 26, 2024
to the GitHub Advisory Database
•
Updated Dec 19, 2024
Description
Published by the National Vulnerability Database
Nov 25, 2024
Published to the GitHub Advisory Database
Nov 26, 2024
Last updated
Dec 19, 2024
In the Linux kernel, the following vulnerability has been resolved:
fs: Fix uninitialized value issue in from_kuid and from_kgid
ocfs2_setattr() uses attr->ia_mode, attr->ia_uid and attr->ia_gid in
a trace point even though ATTR_MODE, ATTR_UID and ATTR_GID aren't set.
Initialize all fields of newattrs to avoid uninitialized variables, by
checking if ATTR_MODE, ATTR_UID, ATTR_GID are initialized, otherwise 0.
References