CVE-2023-53055
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
fscrypt: destroy keyring after security_sb_delete()
fscrypt_destroy_keyring() must be called after all potentially-encrypted inodes were evicted; otherwise it cannot safely destroy the keyring. Since inodes that are in-use by the Landlock LSM don't get evicted until security_sb_delete(), this means that fscrypt_destroy_keyring() must be called after security_sb_delete().
This fixes a WARN_ON followed by a NULL dereference, only possible if Landlock was being used on encrypted files.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | e6f4fd85ef1ee6ab356bfbd64df28c1cb73aee7e < 992a3f3e8a0c92151dfdf65fc85567c865fd558a | affected |
| Linux | Linux | d7e7b9af104c7b389a0c21eb26532511bce4b510 < d77531fac6a1fd9f1db0195438ba5419d72b96c4 | affected |
| Linux | Linux | d7e7b9af104c7b389a0c21eb26532511bce4b510 < 497ab5d9c7852dfedab2c9de75e41b60e54b7c5d | affected |
| Linux | Linux | d7e7b9af104c7b389a0c21eb26532511bce4b510 < ccb820dc7d2236b1af0d54ae038a27b5b6d5ae5a | affected |
| Linux | Linux | 391cceee6d435e616f68631e68f5b32d480b1e67 | affected |
| Linux | Linux | 68d15d6558a386f46d815a6ac39edecad713a1bf | affected |
| Linux | Linux | 5.15.78 < 5.15.105 | affected |
| Linux | Linux | 5.10.154 < 5.11 | affected |
| Linux | Linux | 6.0.8 < 6.1 | affected |
| Linux | Linux | 6.1 | affected |
| Linux | Linux | 0 < 6.1 | unaffected |
| Linux | Linux | 5.15.105 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.22 <= 6.1.* | unaffected |
| Linux | Linux | 6.2.9 <= 6.2.* | unaffected |
| Linux | Linux | 6.3 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/992a3f3e8a0c92151dfdf65fc85567c865fd558a
- https://git.kernel.org/stable/c/d77531fac6a1fd9f1db0195438ba5419d72b96c4
- https://git.kernel.org/stable/c/497ab5d9c7852dfedab2c9de75e41b60e54b7c5d
- https://git.kernel.org/stable/c/ccb820dc7d2236b1af0d54ae038a27b5b6d5ae5a
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.