CVE-2023-54158Linux vulnerability

7 documents6 sources
Severity
N/A
No vector
EPSS
0.0%
top 89.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't free qgroup space unless specified Boris noticed in his simple quotas testing that he was getting a leak with Sweet Tea's change to subvol create that stopped doing a transaction commit. This was just a side effect of that change. In the delayed inode code we have an optimization that will free extra reservations if we think we can pack a dir item into an already modified leaf. Previously this wouldn't be trigger

Affected Packages4 packages

Linuxlinux/linux_kernel4.17.05.4.243+5
Debianlinux/linux_kernel< 5.10.191-1+3
CVEListV5linux/linuxff6bc37eb7f6e7b052e50c13a480e1080b3ec07a1e05bf5e80bb1161b7294c9ce5292b26232ab853+7
debiandebian/linux< linux 6.1.37-1 (bookworm)

🔴Vulnerability Details

3
GHSA
GHSA-crmq-c99h-f986: In the Linux kernel, the following vulnerability has been resolved: btrfs: don't free qgroup space unless specified Boris noticed in his simple quot2025-12-24
OSV
CVE-2023-54158: In the Linux kernel, the following vulnerability has been resolved: btrfs: don't free qgroup space unless specified Boris noticed in his simple quotas2025-12-24
OSV
btrfs: don't free qgroup space unless specified2025-12-24

📋Vendor Advisories

2
Red Hat
kernel: btrfs: don't free qgroup space unless specified2025-12-24
Debian
CVE-2023-54158: linux - In the Linux kernel, the following vulnerability has been resolved: btrfs: don'...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-54158 Impact, Exploitability, and Mitigation Steps | Wiz