CVE-2022-49174: 
Linux Kernel vulnerability analysis and mitigation

In the Linux kernel, a vulnerability (CVE-2022-49174) was discovered in the ext4 filesystem's block bitmap handling with flexbg feature enabled. The issue occurs in ext4mbmarkbb() function where it only reads the bufferhead of block bitmap once for the starting block group but fails to read it again when the extent length boundary overflows to another block group, resulting in memory access beyond the block group bitmap bufferhead (Kernel Git).

The vulnerability exists in the ext4mbmarkbb() function when handling block bitmaps across group boundaries. When the flexbg feature (enabled by default) is used, extents for any inode might span across blocks from two different block groups. The function only reads the bufferhead once and fails to update it when crossing group boundaries, leading to an out-of-bounds memory access in the loop that checks mbtest_bit(). This results in a data abort on Power platforms (Kernel Git).

The vulnerability can lead to data access abort and system crashes when mounting or performing operations on ext4 filesystems with the flex_bg feature enabled. This was demonstrated through a reproducible crash on Power architecture platforms (Kernel Git).

The vulnerability has been fixed by adding functionality to check block group boundaries in ext4mbmarkbb() and updating the bufferhead(bitmap_bh) for every different block group. The fix involves modifying the function to properly handle cases where blocks span across group boundaries (Kernel Git).