CVE-2023-53662
N/A
N/A
Summary
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup}
If the filename casefolding fails, we'll be leaking memory from the fscrypt_name struct, namely from the 'crypto_buf.name' member.
Make sure we free it in the error path on both ext4_fname_setup_filename() and ext4_fname_prepare_lookup() functions.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 1ae98e295fa2577fb5e492200c58d10230e00e99 < 98fc9c2cc45cfcb56961a73de3ec69b474063fc0 | affected |
| Linux | Linux | 1ae98e295fa2577fb5e492200c58d10230e00e99 < 1fb3f1bbfdb511034b0360dbeb0f6a8424ed2a5c | affected |
| Linux | Linux | 1ae98e295fa2577fb5e492200c58d10230e00e99 < 36daf050be3f6f067631dc52054de2d3b7cc849f | affected |
| Linux | Linux | 1ae98e295fa2577fb5e492200c58d10230e00e99 < 7ca4b085f430f3774c3838b3da569ceccd6a0177 | affected |
| Linux | Linux | 5.13 | affected |
| Linux | Linux | 0 < 5.13 | unaffected |
| Linux | Linux | 5.15.199 <= 5.15.* | unaffected |
| Linux | Linux | 6.1.54 <= 6.1.* | unaffected |
| Linux | Linux | 6.5.4 <= 6.5.* | unaffected |
| Linux | Linux | 6.6 <= * | unaffected |
Weaknesses
References
- https://git.kernel.org/stable/c/98fc9c2cc45cfcb56961a73de3ec69b474063fc0
- https://git.kernel.org/stable/c/1fb3f1bbfdb511034b0360dbeb0f6a8424ed2a5c
- https://git.kernel.org/stable/c/36daf050be3f6f067631dc52054de2d3b7cc849f
- https://git.kernel.org/stable/c/7ca4b085f430f3774c3838b3da569ceccd6a0177
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.