CVE-2023-52852

EPSS 0.02%
Published 21.05.2024 16:15:22
Last modified 30.12.2024 20:09:19
Source 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Open
Login

In the Linux kernel, the following vulnerability has been resolved:

f2fs: compress: fix to avoid use-after-free on dic

Call trace:
 __memcpy+0x128/0x250
 f2fs_read_multi_pages+0x940/0xf7c
 f2fs_mpage_readpages+0x5a8/0x624
 f2fs_readahead+0x5c/0x110
 page_cache_ra_unbounded+0x1b8/0x590
 do_sync_mmap_readahead+0x1dc/0x2e4
 filemap_fault+0x254/0xa8c
 f2fs_filemap_fault+0x2c/0x104
 __do_fault+0x7c/0x238
 do_handle_mm_fault+0x11bc/0x2d14
 do_mem_abort+0x3a8/0x1004
 el0_da+0x3c/0xa0
 el0t_64_sync_handler+0xc4/0xec
 el0t_64_sync+0x1b4/0x1b8

In f2fs_read_multi_pages(), once f2fs_decompress_cluster() was called if
we hit cached page in compress_inode's cache, dic may be released, it needs
break the loop rather than continuing it, in order to avoid accessing
invalid dic pointer.

Affected products Warnungen 0 Metrics 2 CWE 1 References 8

Data is provided by the National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 5.13.19 < 5.15.139

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.63

Linux ≫ Linux Kernel Version >= 6.2 < 6.5.12

Linux ≫ Linux Kernel Version >= 6.6 < 6.6.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.02%	0.046

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/8c4504cc0c64862740a6acb301e0cfa59580dbc5

Patch

https://git.kernel.org/stable/c/932ddb5c29e884cc6fac20417ece72ba4a35c401

Patch

https://git.kernel.org/stable/c/9375ea7f269093d7c884857ae1f47633a91f429c

Patch

https://git.kernel.org/stable/c/9d065aa52b6ee1b06f9c4eca881c9b4425a12ba2

Patch

https://git.kernel.org/stable/c/b0327c84e91a0f4f0abced8cb83ec86a7083f086

Patch

https://nvd.nist.gov/vuln/detail/CVE-2023-52852

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-52852

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-52852

EUVD