CVE-2023-2612

Summary

Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to cause a denial of service (kernel deadlock).

Affected Software

VendorProductVersion RangeStatus
Canonical Ltd.ubuntu-linux0 < 02b47547824b1cd0d55c6744f91886f04de8947eaffected

Weaknesses

  • CWE-667: CWE-667

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References