CVE-2023-52602

Summary

In the Linux kernel, the following vulnerability has been resolved:

jfs: fix slab-out-of-bounds Read in dtSearch

Currently while searching for current page in the sorted entry table of the page there is a out of bound access. Added a bound check to fix the error.

Dave: Set return code to -EIO

Affected Software

VendorProductVersion RangeStatus
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < ce8bc22e948634a5c0a3fa58a179177d0e3f3950affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1b9d6828589d57f94a23fb1c46112cda39d7efdbaffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1c40ca3d39d769931b28295b3145c25f1decf5a6affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 6c6a96c3d74df185ee344977d46944d6f33bb4ddaffected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < cab0c265ba182fd266c2aa3c69d7e40640a7f612affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 7110650b85dd2f1cee819acd1345a9013a1a62f7affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < bff9d4078a232c01e42e9377d005fb2f4d31a472affected
LinuxLinux1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < fa5492ee89463a7590a1449358002ff7ef63529faffected
LinuxLinux2.6.12affected
LinuxLinux0 < 2.6.12unaffected
LinuxLinux4.19.307 <= 4.19.*unaffected
LinuxLinux5.4.269 <= 5.4.*unaffected
LinuxLinux5.10.210 <= 5.10.*unaffected
LinuxLinux5.15.149 <= 5.15.*unaffected
LinuxLinux6.1.77 <= 6.1.*unaffected
LinuxLinux6.6.16 <= 6.6.*unaffected
LinuxLinux6.7.4 <= 6.7.*unaffected
LinuxLinux6.8 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References