CVE-2020-27815 log

Severity Medium
Remote No
Type Arbitrary code execution
In the Linux kernel up until 5.10.4, there is an array-index-out-of-bounds in fs/jfs/jfs_dmap.c in dbAdjTree and it may cause out of bounds reads and denial of service.
Group Package Affected Fixed Severity Status Ticket
AVG-1394 linux 5.10.3.arch1-1 5.10.4.arch1-1 Medium Fixed
The JFS kernel module witll be autoloaded when a JFS filesystem is in use, its use can be disabled by preventing the module from loading with the following instructions:

# echo "blacklist jfs" >> /etc/modprobe.d/blacklist.conf

The system will need to be restarted if the JFS module are loaded. In most circumstances, the CIFS kernel modules will be unable to be unloaded while any jfs filesystems are in use.