CVE-2023-53270Improper Handling of Length Parameter Inconsistency in Linux

CWE-130Improper Handling of Length Parameter Inconsistency5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 95.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedSep 16

Description

In the Linux kernel, the following vulnerability has been resolved: ext4: fix i_disksize exceeding i_size problem in paritally written case It is possible for i_disksize can exceed i_size, triggering a warning. generic_perform_write copied = iov_iter_copy_from_user_atomic(len) // copied i_disksize, newsize) // update i_disksize | generic_write_end | copied = block_write_end(copied, len) // copied = 0 | if (unlikely(copied inode->i_size) // return false if (unlikely(copied == 0)) goto again; i

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

NVDlinux/linux_kernel2.6.275.15.111+3
Debianlinux/linux_kernel< 6.1.37-1+2
CVEListV5linux/linux64769240bd07f446f83660bb143bb609d8ab491018eb23891aeae3229baf8c7c23b76be3364e1967+5
debiandebian/linux< linux 6.1.37-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
OSV
CVE-2023-53270: In the Linux kernel, the following vulnerability has been resolved: ext4: fix i_disksize exceeding i_size problem in paritally written case It is poss2025-09-16
GHSA
GHSA-m2rj-qwwv-825v: In the Linux kernel, the following vulnerability has been resolved: ext4: fix i_disksize exceeding i_size problem in paritally written case It is po2025-09-16

📋Vendor Advisories

2
Red Hat
kernel: ext4: fix i_disksize exceeding i_size problem in paritally written case2025-09-16
Debian
CVE-2023-53270: linux - In the Linux kernel, the following vulnerability has been resolved: ext4: fix i...2023
CVE-2023-53270 — Linux vulnerability | cvebase