7.8
CVE-2023-53285
- EPSS 0.01%
- Veröffentlicht 16.09.2025 08:11:18
- Zuletzt bearbeitet 14.01.2026 19:16:20
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
ext4: add bounds checking in get_max_inline_xattr_value_size()
In the Linux kernel, the following vulnerability has been resolved: ext4: add bounds checking in get_max_inline_xattr_value_size() Normally the extended attributes in the inode body would have been checked when the inode is first opened, but if someone is writing to the block device while the file system is mounted, it's possible for the inode table to get corrupted. Add bounds checking to avoid reading beyond the end of allocated memory if this happens.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version < 4.14.315
Linux ≫ Linux Kernel Version >= 4.15 < 4.19.283
Linux ≫ Linux Kernel Version >= 4.20 < 5.4.243
Linux ≫ Linux Kernel Version >= 5.5 < 5.10.180
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.112
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.29
Linux ≫ Linux Kernel Version >= 6.2 < 6.2.16
Linux ≫ Linux Kernel Version >= 6.3 < 6.3.3
Linux ≫ Linux Kernel Version6.4 Updaterc1
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.01% | 0.022 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|