Articles & Reviews
News Archive
Forums
Premium
Contact
Categories

Computers Display Drivers Graphics Cards Linux Gaming Memory Motherboards Processors Software Storage Operating Systems Peripherals

EXT4 Gets Extra Protection Against Maliciously Crafted Container Images

Written by Michael Larabel in Linux Storage on 4 April 2018 at 11:36 AM EDT. 5 Comments

LINUX STORAGE

Given the booming popularity of Linux containers, it's little surprise but unfortunate that Linux file-systems are having to protect against specially-crafted file-system images by malicious actors looking to exploit vulnerabilities in the code.

Ted Ts'o today sent in the EXT4 Linux file-system updates and it's mostly mundane maintenance work with no major features this cycle. He did note of the bug fixes to protect against potentially malicious EXT4 file-system images.

Ted commented, "Cleanups and bugfixes for ext4, including some fixes to make ext4 more robust against maliciously crafted file system images. (I still don't recommend that container folks hold any delusions that mounting arbitary images that can be crafted by malicious attackers should be considered sane thing to do, though!)"

The roughly two dozen changes for EXT4 in Linux 4.17 can be found here.

5 Comments

Related News

CBD Proposed For The Linux Kernel: CXL Block Device

Bcachefs Sends In More Fixes For Linux 6.9: Recovery & Repair Issues Settling Down

EROFS Eyes Zstd Compression, Intel QAT/IAA Accelerator Support, & Experimental Rust Code

More Bcachefs Fixes & Recovery Improvements Land In Linux 6.9

Bcachefs Sees More Fixes For Linux 6.9-rc4, Reiterates Its Experimental Nature

OpenZFS Merges Support For Using Multiple Task Queues To Increase Performance

About The Author

Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week

Rust-Written LAVD Kernel Scheduler Shows Promising Results For Linux Gaming

Former Nouveau Lead Developer Joins NVIDIA, Continues Working On Open-Source Driver

Fedora Linux 40 Cleared For Release Next Week

AMD: "Additional Parts Of The Radeon Stack To Be Open Sourced Throughout The Year"

Mozilla Finally Begins Offering Firefox ARM64 Linux Binaries

Fedora Linux 40 Available For Download As A Wonderful Upgrade

openSUSE Factory Achieves Bit-By-Bit Reproducible Builds

Linux 6.10 Preps A Kernel Panic Screen - Sort Of A "Blue Screen of Death"