CVE-2023-54264

Summary

In the Linux kernel, the following vulnerability has been resolved:

fs/sysv: Null check to prevent null-ptr-deref bug

sb_getblk(inode->i_sb, parent) return a null ptr and taking lock on that leads to the null-ptr-deref bug.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe5657933863f43cc6bb76a54d659303dafaa9e58 < e976988bc245ec3768cc0f76bed7d05488a7dd0faffected
LinuxLinuxe5657933863f43cc6bb76a54d659303dafaa9e58 < baa60c66a310c50785289b0ede6fdce8ec3219c7affected
LinuxLinuxe5657933863f43cc6bb76a54d659303dafaa9e58 < 0a44ceba77c3267f8505dda102a59367dc24caeeaffected
LinuxLinuxe5657933863f43cc6bb76a54d659303dafaa9e58 < 7f740bc696d4617f8ee44565e8ac0d36278a1e91affected
LinuxLinuxe5657933863f43cc6bb76a54d659303dafaa9e58 < afd9a31b5aa4b3747f382d44a7b03b7b5d0b7635affected
LinuxLinuxe5657933863f43cc6bb76a54d659303dafaa9e58 < 1416eebaad80bdc85ad9f97f27242011b031e2a9affected
LinuxLinuxe5657933863f43cc6bb76a54d659303dafaa9e58 < e28f376dd8dfcc4e880ac101184132bc08703f6eaffected
LinuxLinuxe5657933863f43cc6bb76a54d659303dafaa9e58 < ea2b62f305893992156a798f665847e0663c9f41affected
LinuxLinux2.6.19affected
LinuxLinux0 < 2.6.19unaffected
LinuxLinux4.14.322 <= 4.14.*unaffected
LinuxLinux4.19.291 <= 4.19.*unaffected
LinuxLinux5.4.253 <= 5.4.*unaffected
LinuxLinux5.10.190 <= 5.10.*unaffected
LinuxLinux5.15.126 <= 5.15.*unaffected
LinuxLinux6.1.45 <= 6.1.*unaffected
LinuxLinux6.4.10 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

References