-

CVE-2023-54021

EPSS 0.05%
Veröffentlicht 24.12.2025 10:55:51
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

ext4: set goal start correctly in ext4_mb_normalize_request

In the Linux kernel, the following vulnerability has been resolved:

ext4: set goal start correctly in ext4_mb_normalize_request

We need to set ac_g_ex to notify the goal start used in
ext4_mb_find_by_goal. Set ac_g_ex instead of ac_f_ex in
ext4_mb_normalize_request.
Besides we should assure goal start is in range [first_data_block,
blocks_count) as ext4_mb_initialize_context does.

[ Added a check to make sure size is less than ar->pright; otherwise
  we could end up passing an underflowed value of ar->pright - size to
  ext4_get_group_no_and_offset(), which will trigger a BUG_ON later on.
  - TYT ]

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

CNA 2 VulnDex Vulnerability Enrichment 11

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version c9de560ded61faa5b754137b7753da252391c55a

Version < 2479bb6cbdb4d56b807bbe5229e3e26a6f1f4530

Status affected

Version c9de560ded61faa5b754137b7753da252391c55a

Version < 390eee955d4de4662db5e3e9e9a9eae020432cb7

Status affected

Version c9de560ded61faa5b754137b7753da252391c55a

Version < cee78217a7ae72d11c2e21e1a5263b8044489823

Status affected

Version c9de560ded61faa5b754137b7753da252391c55a

Version < 3ca3005b502ca8ea87d6a344323b179b48c4e4a3

Status affected

Version c9de560ded61faa5b754137b7753da252391c55a

Version < bc4a3e1d07a86ae5845321d371190244acacb2f2

Status affected

Version c9de560ded61faa5b754137b7753da252391c55a

Version < c6bee8970075b256fc1b07bf4873049219380818

Status affected

Version c9de560ded61faa5b754137b7753da252391c55a

Version < abb330ffaa3a0ae7ce632e28c9260b461c01f19f

Status affected

Version c9de560ded61faa5b754137b7753da252391c55a

Version < b07ffe6927c75d99af534d685282ea188d9f71a6

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 2.6.25

Status affected

Version 0

Version < 2.6.25

Status unaffected

Version <= 4.14.*

Version 4.14.316

Status unaffected

Version <= 4.19.*

Version 4.19.284

Status unaffected

Version <= 5.4.*

Version 5.4.244

Status unaffected

Version <= 5.10.*

Version 5.10.181

Status unaffected

Version <= 5.15.*

Version 5.15.113

Status unaffected

Version <= 6.1.*

Version 6.1.30

Status unaffected

Version <= 6.3.*

Version 6.3.4

Status unaffected

Version <= *

Version 6.4

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.144

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/2479bb6cbdb4d56b807bbe5229e3e26a6f1f4530

https://git.kernel.org/stable/c/390eee955d4de4662db5e3e9e9a9eae020432cb7

https://git.kernel.org/stable/c/cee78217a7ae72d11c2e21e1a5263b8044489823

https://git.kernel.org/stable/c/3ca3005b502ca8ea87d6a344323b179b48c4e4a3

https://git.kernel.org/stable/c/bc4a3e1d07a86ae5845321d371190244acacb2f2

https://git.kernel.org/stable/c/c6bee8970075b256fc1b07bf4873049219380818

https://git.kernel.org/stable/c/abb330ffaa3a0ae7ce632e28c9260b461c01f19f

https://git.kernel.org/stable/c/b07ffe6927c75d99af534d685282ea188d9f71a6

https://nvd.nist.gov/vuln/detail/CVE-2023-54021

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54021

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54021

EUVD