-
CVE-2023-54280
- EPSS 0.03%
- Veröffentlicht 30.12.2025 12:23:22
- Zuletzt bearbeitet 15.04.2026 00:35:42
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
cifs: fix potential race when tree connecting ipc
In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential race when tree connecting ipc Protect access of TCP_Server_Info::hostname when building the ipc tree name as it might get freed in cifsd thread and thus causing an use-after-free bug in __tree_connect_dfs_target(). Also, while at it, update status of IPC tcon on success and then avoid any extra tree connects.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
≫
Produkt
Linux
Default Statusunaffected
Version
c88f7dcd6d6429197fc2fd87b54a894ffcd48e8e
Version <
536ec71ba060a02fabe8e22cecb82fe7b3a8708b
Status
affected
Version
c88f7dcd6d6429197fc2fd87b54a894ffcd48e8e
Version <
553476df55a111e6a66ad9155256aec0ec1b7ad0
Status
affected
Version
c88f7dcd6d6429197fc2fd87b54a894ffcd48e8e
Version <
ee20d7c6100752eaf2409d783f4f1449c29ea33d
Status
affected
Version
81d583baa5f1abd73c755ce1992929debd20b687
Status
affected
HerstellerLinux
≫
Produkt
Linux
Default Statusaffected
Version
5.16
Status
affected
Version
0
Version <
5.16
Status
unaffected
Version <=
6.2.*
Version
6.2.15
Status
unaffected
Version <=
6.3.*
Version
6.3.2
Status
unaffected
Version <=
*
Version
6.4
Status
unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.03% | 0.092 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|