-

CVE-2023-54124

EPSS 0.04%
Veröffentlicht 24.12.2025 13:06:43
Zuletzt bearbeitet 29.12.2025 15:58:34
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

f2fs: fix to drop all dirty pages during umount() if cp_error is set

xfstest generic/361 reports a bug as below:

f2fs_bug_on(sbi, sbi->fsync_node_num);

kernel BUG at fs/f2fs/super.c:1627!
RIP: 0010:f2fs_put_super+0x3a8/0x3b0
Call Trace:
 generic_shutdown_super+0x8c/0x1b0
 kill_block_super+0x2b/0x60
 kill_f2fs_super+0x87/0x110
 deactivate_locked_super+0x39/0x80
 deactivate_super+0x46/0x50
 cleanup_mnt+0x109/0x170
 __cleanup_mnt+0x16/0x20
 task_work_run+0x65/0xa0
 exit_to_user_mode_prepare+0x175/0x190
 syscall_exit_to_user_mode+0x25/0x50
 do_syscall_64+0x4c/0x90
 entry_SYSCALL_64_after_hwframe+0x72/0xdc

During umount(), if cp_error is set, f2fs_wait_on_all_pages() should
not stop waiting all F2FS_WB_CP_DATA pages to be writebacked, otherwise,
fsync_node_num can be non-zero after f2fs_wait_on_all_pages() causing
this bug.

In this case, to avoid deadloop in f2fs_wait_on_all_pages(), it needs
to drop all dirty pages rather than redirtying them.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 10

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 92575f05a32dafb16348bfa5e62478118a9be069

Version af697c0f5c5b8798832e651baf23460d588393de

Status affected

Version < 4ceedc2f8bdffb82e40b7d1bb912304f8e157cb1

Version af697c0f5c5b8798832e651baf23460d588393de

Status affected

Version < ad87bd313f70b51e48019d5ce2d02d73152356b3

Version af697c0f5c5b8798832e651baf23460d588393de

Status affected

Version < d8f4ad5f3979dbd8e6251259562f12472717883a

Version af697c0f5c5b8798832e651baf23460d588393de

Status affected

Version < 7741ddc882a0c806a6508ba8203c55a779db7a21

Version af697c0f5c5b8798832e651baf23460d588393de

Status affected

Version < 82c3d6e9db41cbd3af1d4f90bdb441740b5fad10

Version af697c0f5c5b8798832e651baf23460d588393de

Status affected

Version < c9b3649a934d131151111354bcbb638076f03a30

Version af697c0f5c5b8798832e651baf23460d588393de

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 4.19

Status affected

Version < 4.19

Version 0

Status unaffected

Version <= 4.19.*

Version 4.19.284

Status unaffected

Version <= 5.4.*

Version 5.4.244

Status unaffected

Version <= 5.10.*

Version 5.10.181

Status unaffected

Version <= 5.15.*

Version 5.15.113

Status unaffected

Version <= 6.1.*

Version 6.1.30

Status unaffected

Version <= 6.3.*

Version 6.3.4

Status unaffected

Version <= *

Version 6.4

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.1

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/92575f05a32dafb16348bfa5e62478118a9be069

https://git.kernel.org/stable/c/4ceedc2f8bdffb82e40b7d1bb912304f8e157cb1

https://git.kernel.org/stable/c/ad87bd313f70b51e48019d5ce2d02d73152356b3

https://git.kernel.org/stable/c/d8f4ad5f3979dbd8e6251259562f12472717883a

https://git.kernel.org/stable/c/7741ddc882a0c806a6508ba8203c55a779db7a21

https://git.kernel.org/stable/c/82c3d6e9db41cbd3af1d4f90bdb441740b5fad10

https://git.kernel.org/stable/c/c9b3649a934d131151111354bcbb638076f03a30

https://nvd.nist.gov/vuln/detail/CVE-2023-54124

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54124

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54124

EUVD