CVE-2023-54121Integer Overflow or Wraparound in Linux

CWE-190Integer Overflow or Wraparound7 documents6 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 93.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix incorrect splitting in btrfs_drop_extent_map_range In production we were seeing a variety of WARN_ON()'s in the extent_map code, specifically in btrfs_drop_extent_map_range() when we have to call add_extent_mapping() for our second split. Consider the following extent map layout PINNED [0 16K) [32K, 48K) and then we call btrfs_drop_extent_map_range for [0, 36K), with skip_pinned == true. The initial loop will hav

Affected Packages4 packages

Linuxlinux/linux_kernel2.6.336.1.47+1
Debianlinux/linux_kernel< 6.1.52-1+2
CVEListV5linux/linux55ef68990029fcd8d04d42fc184aa7fb18cf309e9f68e2105dd96cf0fafffffafb2337fbd0fbae1f+4
debiandebian/linux< linux 6.1.52-1 (bookworm)

🔴Vulnerability Details

3
OSV
btrfs: fix incorrect splitting in btrfs_drop_extent_map_range2025-12-24
GHSA
GHSA-8482-4rvj-5h62: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix incorrect splitting in btrfs_drop_extent_map_range In production we w2025-12-24
OSV
CVE-2023-54121: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix incorrect splitting in btrfs_drop_extent_map_range In production we wer2025-12-24

📋Vendor Advisories

2
Red Hat
kernel: btrfs: fix incorrect splitting in btrfs_drop_extent_map_range2025-12-24
Debian
CVE-2023-54121: linux - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix ...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-54121 Impact, Exploitability, and Mitigation Steps | Wiz