CVE-2023-53845Incorrect Check of Function Return Value in Linux

CWE-253Incorrect Check of Function Return Value7 documents6 sources
Severity
5.5MEDIUM
No vector
EPSS
0.1%
top 80.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 9

Description

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix infinite loop in nilfs_mdt_get_block() If the disk image that nilfs2 mounts is corrupted and a virtual block address obtained by block lookup for a metadata file is invalid, nilfs_bmap_lookup_at_level() may return the same internal return code as -ENOENT, meaning the block does not exist in the metadata file. This duplication of return codes confuses nilfs_mdt_get_block(), causing it to read and create a metadata

Affected Packages4 packages

Linuxlinux/linux_kernel2.6.304.14.315+7
Debianlinux/linux_kernel< 5.10.191-1+3
CVEListV5linux/linuxbdb265eae08db578e7cf5739be16f389d495fc75cfb0bb4fbd40c1f06da7e9f88c0a2d46155b90c2+9
debiandebian/linux< linux 6.1.37-1 (bookworm)

🔴Vulnerability Details

3
OSV
CVE-2023-53845: In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix infinite loop in nilfs_mdt_get_block() If the disk image that nilfs2 m2025-12-09
OSV
nilfs2: fix infinite loop in nilfs_mdt_get_block()2025-12-09
GHSA
GHSA-qv9p-mjrr-3vmm: In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix infinite loop in nilfs_mdt_get_block() If the disk image that nilfs22025-12-09

📋Vendor Advisories

2
Red Hat
kernel: nilfs2: fix infinite loop in nilfs_mdt_get_block()2025-12-09
Debian
CVE-2023-53845: linux - In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-53845 Impact, Exploitability, and Mitigation Steps | Wiz