EXT4 Gets Extra Protection Against Maliciously Crafted Container Images
Given the booming popularity of Linux containers, it's little surprise but unfortunate that Linux file-systems are having to protect against specially-crafted file-system images by malicious actors looking to exploit vulnerabilities in the code.
Ted Ts'o today sent in the EXT4 Linux file-system updates and it's mostly mundane maintenance work with no major features this cycle. He did note of the bug fixes to protect against potentially malicious EXT4 file-system images.
Ted commented, "Cleanups and bugfixes for ext4, including some fixes to make ext4 more robust against maliciously crafted file system images. (I still don't recommend that container folks hold any delusions that mounting arbitary images that can be crafted by malicious attackers should be considered sane thing to do, though!)"
The roughly two dozen changes for EXT4 in Linux 4.17 can be found here.
Ted Ts'o today sent in the EXT4 Linux file-system updates and it's mostly mundane maintenance work with no major features this cycle. He did note of the bug fixes to protect against potentially malicious EXT4 file-system images.
Ted commented, "Cleanups and bugfixes for ext4, including some fixes to make ext4 more robust against maliciously crafted file system images. (I still don't recommend that container folks hold any delusions that mounting arbitary images that can be crafted by malicious attackers should be considered sane thing to do, though!)"
The roughly two dozen changes for EXT4 in Linux 4.17 can be found here.
5 Comments