CVE-2023-54311Deadlock in Linux

CWE-833Deadlock7 documents6 sources
Severity
6.2MEDIUM
No vector
EPSS
0.0%
top 89.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 30

Description

In the Linux kernel, the following vulnerability has been resolved: ext4: fix deadlock when converting an inline directory in nojournal mode In no journal mode, ext4_finish_convert_inline_dir() can self-deadlock by calling ext4_handle_dirty_dirblock() when it already has taken the directory lock. There is a similar self-deadlock in ext4_incvert_inline_data_nolock() for data files which we'll fix at the same time. A simple reproducer demonstrating the problem: mke2fs -Fq -t ext2 -O inline_dat

Affected Packages4 packages

Linuxlinux/linux_kernel3.8.05.4.243+5
Debianlinux/linux_kernel< 5.10.191-1+3
CVEListV5linux/linux3c47d54170b6a678875566b1b8d6dcf57904e49bb4fa4768c9acff77245d672d855d2c88294850b1+7
debiandebian/linux< linux 6.1.37-1 (bookworm)

🔴Vulnerability Details

3
OSV
CVE-2023-54311: In the Linux kernel, the following vulnerability has been resolved: ext4: fix deadlock when converting an inline directory in nojournal mode In no jou2025-12-30
OSV
ext4: fix deadlock when converting an inline directory in nojournal mode2025-12-30
GHSA
GHSA-78x5-gg4g-8mmw: In the Linux kernel, the following vulnerability has been resolved: ext4: fix deadlock when converting an inline directory in nojournal mode In no j2025-12-30

📋Vendor Advisories

2
Red Hat
kernel: ext4: fix deadlock when converting an inline directory in nojournal mode2025-12-30
Debian
CVE-2023-54311: linux - In the Linux kernel, the following vulnerability has been resolved: ext4: fix d...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-54311 Impact, Exploitability, and Mitigation Steps | Wiz