CVE-2023-53429Incomplete Cleanup in Linux

CWE-459Incomplete Cleanup6 documents6 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 95.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
LinuxLinux KernelDebian Linux+3 more
Timeline
PublishedSep 18

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't check PageError in __extent_writepage __extent_writepage currenly sets PageError whenever any error happens, and the also checks for PageError to decide if to call error handling. This leads to very unclear responsibility for cleaning up on errors. In the VM and generic writeback helpers the basic idea is that once I/O is fired off all error handling responsibility is delegated to the end I/O handler. But if that

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages7 packages

NVDlinux/linux_kernel< 6.4.7
Debianlinux/linux_kernel< 6.4.11-1+1
CVEListV5linux/linux61391d562229ed94899ed4b4973dc2f0c015292ad40be032ecd8ee1ca033bee43c7755d21fb4d72a+2
debiandebian/linux< linux 6.4.11-1 (forky)

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
GHSA
GHSA-95qf-frmh-4g6j: In the Linux kernel, the following vulnerability has been resolved: btrfs: don't check PageError in __extent_writepage __extent_writepage currenly s2025-09-18
OSV
CVE-2023-53429: In the Linux kernel, the following vulnerability has been resolved: btrfs: don't check PageError in __extent_writepage __extent_writepage currenly set2025-09-18

📋Vendor Advisories

3
Red Hat
kernel: btrfs: don't check PageError in __extent_writepage2025-09-18
Microsoft
btrfs: don't check PageError in __extent_writepage2025-09-09
Debian
CVE-2023-53429: linux - In the Linux kernel, the following vulnerability has been resolved: btrfs: don'...2023
CVE-2023-53429 — Incomplete Cleanup in Linux | cvebase