CVE-2023-54128

Summary

In the Linux kernel, the following vulnerability has been resolved:

fs: drop peer group ids under namespace lock

When cleaning up peer group ids in the failure path we need to make sure to hold on to the namespace lock. Otherwise another thread might just turn the mount from a shared into a non-shared mount concurrently.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux2a1867219c7b27f928e2545782b86daaf9ad50bd < 0af8fae81d8b7f1beddc17c5d4cfa43235134648affected
LinuxLinux2a1867219c7b27f928e2545782b86daaf9ad50bd < ddca03d97daa7b07b60c52e3d3060762732c6666affected
LinuxLinux2a1867219c7b27f928e2545782b86daaf9ad50bd < 65c324d3f35c05e37afec39ac80743583fdcc96caffected
LinuxLinux2a1867219c7b27f928e2545782b86daaf9ad50bd < cb2239c198ad9fbd5aced22cf93e45562da781ebaffected
LinuxLinux5.12affected
LinuxLinux0 < 5.12unaffected
LinuxLinux5.15.107 <= 5.15.*unaffected
LinuxLinux6.1.24 <= 6.1.*unaffected
LinuxLinux6.2.11 <= 6.2.*unaffected
LinuxLinux6.3 <= *unaffected

Weaknesses

References