CVE-2023-54032Improper Resource Locking in Linux

CWE-413Improper Resource Locking7 documents6 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 89.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting quota root from the dirty cow roots list When disabling quotas we are deleting the quota root from the list fs_info->dirty_cowonly_roots without taking the lock that protects it, which is struct btrfs_fs_info::trans_lock. This unsynchronized list manipulation may cause chaos if there's another concurrent manipulation of this list, such as when adding a root to it with ctree.c:add_root_to_dirty_lis

Affected Packages4 packages

Linuxlinux/linux_kernel3.6.04.14.322+6
Debianlinux/linux_kernel< 5.10.191-1+3
CVEListV5linux/linuxbed92eae26ccf280d1a2168b7509447b56675a27365f318da7384cbac5de6b9c098914888a4d63e7+8
debiandebian/linux< linux 6.1.52-1 (bookworm)

🔴Vulnerability Details

3
GHSA
GHSA-8gh4-gqrp-mv7g: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting quota root from the dirty cow roots list When disa2025-12-24
OSV
CVE-2023-54032: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting quota root from the dirty cow roots list When disabl2025-12-24
OSV
btrfs: fix race when deleting quota root from the dirty cow roots list2025-12-24

📋Vendor Advisories

2
Red Hat
kernel: btrfs: fix race when deleting quota root from the dirty cow roots list2025-12-24
Debian
CVE-2023-54032: linux - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix ...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-54032 Impact, Exploitability, and Mitigation Steps | Wiz