7.8

CVE-2023-52602

jfs: fix slab-out-of-bounds Read in dtSearch

In the Linux kernel, the following vulnerability has been resolved:

jfs: fix slab-out-of-bounds Read in dtSearch

Currently while searching for current page in the sorted entry table
of the page there is a out of bound access. Added a bound check to fix
the error.

Dave:
Set return code to -EIO
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version < 4.19.307
LinuxLinux Kernel Version >= 4.20 < 5.4.269
LinuxLinux Kernel Version >= 5.5 < 5.10.210
LinuxLinux Kernel Version >= 5.11 < 5.15.149
LinuxLinux Kernel Version >= 5.16 < 6.1.77
LinuxLinux Kernel Version >= 6.2 < 6.6.16
LinuxLinux Kernel Version >= 6.7 < 6.7.4
DebianDebian Linux Version10.0
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.25% 0.161
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource.

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html
Mailing List
https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Mailing List
https://git.kernel.org/stable/c/1b9d6828589d57f94a23fb1c46112cda39d7efdb
Patch
https://git.kernel.org/stable/c/1c40ca3d39d769931b28295b3145c25f1decf5a6
Patch
https://git.kernel.org/stable/c/6c6a96c3d74df185ee344977d46944d6f33bb4dd
Patch
https://git.kernel.org/stable/c/7110650b85dd2f1cee819acd1345a9013a1a62f7
Patch
https://git.kernel.org/stable/c/bff9d4078a232c01e42e9377d005fb2f4d31a472
Patch
https://git.kernel.org/stable/c/cab0c265ba182fd266c2aa3c69d7e40640a7f612
Patch
https://git.kernel.org/stable/c/ce8bc22e948634a5c0a3fa58a179177d0e3f3950
Patch
https://git.kernel.org/stable/c/fa5492ee89463a7590a1449358002ff7ef63529f
Patch