5.5

CVE-2023-52583

ceph: fix deadlock or deadcode of misusing dget()

In the Linux kernel, the following vulnerability has been resolved:

ceph: fix deadlock or deadcode of misusing dget()

The lock order is incorrect between denty and its parent, we should
always make sure that the parent get the lock first.

But since this deadcode is never used and the parent dir will always
be set from the callers, let's just remove it.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 4.19.307
LinuxLinux Kernel Version >= 4.20 < 5.4.269
LinuxLinux Kernel Version >= 5.5 < 5.10.210
LinuxLinux Kernel Version >= 5.11 < 5.15.149
LinuxLinux Kernel Version >= 5.16 < 6.1.77
LinuxLinux Kernel Version >= 6.2 < 6.6.16
LinuxLinux Kernel Version >= 6.7 < 6.7.4
DebianDebian Linux Version10.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.18% 0.079
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-667 Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
Mailing List
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Mailing List
https://git.kernel.org/stable/c/196b87e5c00ce021e164a5de0f0d04f4116a9160
Patch
https://git.kernel.org/stable/c/6ab4fd508fad942f1f1ba940492f2735e078e980
Patch
https://git.kernel.org/stable/c/76cb2aa3421fee4fde706dec41b1344bc0a9ad67
Patch
https://git.kernel.org/stable/c/7f2649c94264d00df6b6ac27161e9f4372a3450e
Patch
https://git.kernel.org/stable/c/a9c15d6e8aee074fae66c04d114f20b84274fcca
Patch
https://git.kernel.org/stable/c/b493ad718b1f0357394d2cdecbf00a44a36fa085
Patch
https://git.kernel.org/stable/c/e016e358461b89b231626fcf78c5c38e35c44fd3
Patch
https://git.kernel.org/stable/c/eb55ba8aa7fb7aad54f40fbf4d8dcdfdba0bebf6
Patch