5.5

CVE-2023-52681

efivarfs: Free s_fs_info on unmount

In the Linux kernel, the following vulnerability has been resolved:

efivarfs: Free s_fs_info on unmount

Now that we allocate a s_fs_info struct on fs context creation, we
should ensure that we free it again when the superblock goes away.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
LinuxLinux Kernel Version >= 6.7 < 6.7.2
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.23% 0.138
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

https://git.kernel.org/stable/c/48be1364dd387e375e1274b76af986cb8747be2c
Patch
https://git.kernel.org/stable/c/547713d502f7b4b8efccd409cff84d731a23853b
Patch
https://git.kernel.org/stable/c/92be3095c6ca1cdc46237839c6087555be9160e3
Patch
https://git.kernel.org/stable/c/ea6b597fcaca99562fa56a473bcbbbd79b40af03
Patch