CVE-2023-53804Linux vulnerability

6 documents5 sources
Severity
N/A
No vector
EPSS
0.0%
top 85.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 9

Description

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode() During unmount process of nilfs2, nothing holds nilfs_root structure after nilfs2 detaches its writer in nilfs_detach_log_writer(). However, since nilfs_evict_inode() uses nilfs_root for some cleanup operations, it may cause use-after-free read if inodes are left in "garbage_list" and released by nilfs_dispose_list() at the end of nilfs_detach_log_writer(). F

Affected Packages4 packages

Linuxlinux/linux_kernel2.6.374.14.316+6
Debianlinux/linux_kernel< 5.10.191-1+3
CVEListV5linux/linuxe912a5b66837ee89fb025e67b5efeaa11930c2cef31e18131ee2ce80a4da5c808221d25b1ae9ad6d+8
debiandebian/linux< linux 6.1.37-1 (bookworm)

🔴Vulnerability Details

3
OSV
nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode()2025-12-09
OSV
CVE-2023-53804: In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode() During unmount2025-12-09
GHSA
GHSA-wf2j-c3q8-8c84: In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode() During unmou2025-12-09

📋Vendor Advisories

2
Red Hat
kernel: nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode()2025-12-09
Debian
CVE-2023-53804: linux - In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix...2023