CVE-2023-53813Incorrect Synchronization in Linux

CWE-821Incorrect Synchronization6 documents5 sources
Severity
6.4MEDIUM
No vector
EPSS
0.0%
top 89.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 9

Description

In the Linux kernel, the following vulnerability has been resolved: ext4: fix rbtree traversal bug in ext4_mb_use_preallocated During allocations, while looking for preallocations(PA) in the per inode rbtree, we can't do a direct traversal of the tree because ext4_mb_discard_group_preallocation() can paralelly mark the pa deleted and that can cause direct traversal to skip some entries. This was leading to a BUG_ON() being hit [1] when we missed a PA that could satisfy our request and ultimate

Affected Packages4 packages

Linuxlinux/linux_kernel6.4.06.4.8
Debianlinux/linux_kernel< 6.4.11-1+1
CVEListV5linux/linux3872778664e36528caf8b27f355e75482f6d562d339fee69a1daa71d6f97e47a867e2c32419a2406+2
debiandebian/linux< linux 6.4.11-1 (forky)

🔴Vulnerability Details

3
OSV
ext4: fix rbtree traversal bug in ext4_mb_use_preallocated2025-12-09
GHSA
GHSA-q9qx-6p6c-fw88: In the Linux kernel, the following vulnerability has been resolved: ext4: fix rbtree traversal bug in ext4_mb_use_preallocated During allocations, w2025-12-09
OSV
CVE-2023-53813: In the Linux kernel, the following vulnerability has been resolved: ext4: fix rbtree traversal bug in ext4_mb_use_preallocated During allocations, whi2025-12-09

📋Vendor Advisories

2
Red Hat
kernel: ext4: fix rbtree traversal bug in ext4_mb_use_preallocated2025-12-09
Debian
CVE-2023-53813: linux - In the Linux kernel, the following vulnerability has been resolved: ext4: fix r...2023