exploitDog

CVE-2023-53672

Опубликовано: 07 окт. 2025

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

In the Linux kernel, the following vulnerability has been resolved:

btrfs: output extra debug info if we failed to find an inline backref

[BUG] Syzbot reported several warning triggered inside lookup_inline_extent_backref().

[CAUSE] As usual, the reproducer doesn't reliably trigger locally here, but at least we know the WARN_ON() is triggered when an inline backref can not be found, and it can only be triggered when @insert is true. (I.e. inserting a new inline backref, which means the backref should already exist)

[ENHANCEMENT] After the WARN_ON(), dump all the parameters and the extent tree leaf to help debug.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 3.9.1 (включая) до 4.14.326 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 4.15 (включая) до 4.19.295 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 4.20 (включая) до 5.4.257 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 5.5 (включая) до 5.10.197 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 5.11 (включая) до 5.15.133 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 5.16 (включая) до 6.1.55 (исключая)

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

Версия от 6.2 (включая) до 6.5.5 (исключая)

cpe:2.3:o:linux:linux_kernel:3.9:-:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:3.9:rc3:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:3.9:rc4:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:3.9:rc5:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:3.9:rc6:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:3.9:rc7:*:*:*:*:*:*

cpe:2.3:o:linux:linux_kernel:3.9:rc8:*:*:*:*:*:*

EPSS

Процентиль: 5%

0.00023

Низкий

5.5 Medium

CVSS3

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

CVE-2023-53672

CVSS3: 5.5

ubuntu

4 месяца назад

In the Linux kernel, the following vulnerability has been resolved: btrfs: output extra debug info if we failed to find an inline backref [BUG] Syzbot reported several warning triggered inside lookup_inline_extent_backref(). [CAUSE] As usual, the reproducer doesn't reliably trigger locally here, but at least we know the WARN_ON() is triggered when an inline backref can not be found, and it can only be triggered when @insert is true. (I.e. inserting a new inline backref, which means the backref should already exist) [ENHANCEMENT] After the WARN_ON(), dump all the parameters and the extent tree leaf to help debug.

CVE-2023-53672

CVSS3: 5.5

debian

4 месяца назад

In the Linux kernel, the following vulnerability has been resolved: b ...

GHSA-vgqm-7wmp-qp26

CVSS3: 5.5

github

4 месяца назад

In the Linux kernel, the following vulnerability has been resolved: btrfs: output extra debug info if we failed to find an inline backref [BUG] Syzbot reported several warning triggered inside lookup_inline_extent_backref(). [CAUSE] As usual, the reproducer doesn't reliably trigger locally here, but at least we know the WARN_ON() is triggered when an inline backref can not be found, and it can only be triggered when @insert is true. (I.e. inserting a new inline backref, which means the backref should already exist) [ENHANCEMENT] After the WARN_ON(), dump all the parameters and the extent tree leaf to help debug.

SUSE-SU-2025:4189-1

suse-cvrf

2 месяца назад

Security update for the Linux Kernel

SUSE-SU-2025:4128-1

suse-cvrf

3 месяца назад

Security update for the Linux Kernel

EPSS

Процентиль: 5%

0.00023

Низкий

5.5 Medium

CVSS3

Дефекты

NVD-CWE-noinfo