CVE-2023-52602

Published: Mar 6, 2024Modified: Mar 14, 2025

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

In the Linux kernel, the following vulnerability has been resolved: jfs: fix slab-out-of-bounds Read in dtSearch Currently while searching for current page in the sorted entry table of the page there is a out of bound access. Added a bound check to fix the error. Dave: Set return code to -EIO

Affected (8)

Products: Linux: Linux Kernel · Debian: Debian Linux

1 product

1 product

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 4.19.307
Linux Linux Kernel	From 4.20 to 5.4.269
Linux Linux Kernel	From 5.11 to 5.15.149
Linux Linux Kernel	From 5.16 to 6.1.77
Linux Linux Kernel	From 5.5 to 5.10.210
Linux Linux Kernel	From 6.2 to 6.6.16
Linux Linux Kernel	From 6.7 to 6.7.4

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 10.0

Related CWEs

Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (18)

https://git.kernel.org/stable/c/1b9d6828589d57f94a23fb1c46112cda39d7efdb

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/1c40ca3d39d769931b28295b3145c25f1decf5a6

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/6c6a96c3d74df185ee344977d46944d6f33bb4dd

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/7110650b85dd2f1cee819acd1345a9013a1a62f7

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/bff9d4078a232c01e42e9377d005fb2f4d31a472

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/cab0c265ba182fd266c2aa3c69d7e40640a7f612

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/ce8bc22e948634a5c0a3fa58a179177d0e3f3950

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/fa5492ee89463a7590a1449358002ff7ef63529f

Source: 416baaa9-dc9f-4396-8d5f-8c081fb06d67

Patch

https://git.kernel.org/stable/c/1b9d6828589d57f94a23fb1c46112cda39d7efdb

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/1c40ca3d39d769931b28295b3145c25f1decf5a6

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/6c6a96c3d74df185ee344977d46944d6f33bb4dd

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/7110650b85dd2f1cee819acd1345a9013a1a62f7

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/bff9d4078a232c01e42e9377d005fb2f4d31a472

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/cab0c265ba182fd266c2aa3c69d7e40640a7f612

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/ce8bc22e948634a5c0a3fa58a179177d0e3f3950

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://git.kernel.org/stable/c/fa5492ee89463a7590a1449358002ff7ef63529f

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

Timeline

No history available yet.