CVE-2023-52760

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2023-52760

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52760.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-52760

Downstream

BELL-CVE-2023-52760

DEBIAN-CVE-2023-52760

DLA-4008-1

DSA-5731-1

UBUNTU-CVE-2023-52760

USN-6972-1

USN-6972-2

USN-6972-3

USN-6972-4

USN-6973-1

USN-6973-2

USN-6973-3

USN-6973-4

USN-6974-1

USN-6974-2

USN-6976-1

USN-7006-1

USN-7019-1

Published

2024-05-21T15:30:46Z

Modified

2025-10-16T12:52:48.982397Z

Summary

gfs2: Fix slab-use-after-free in gfs2_qd_dealloc

Details

In the Linux kernel, the following vulnerability has been resolved:

gfs2: Fix slab-use-after-free in gfs2qddealloc

In gfs2putsuper(), whether withdrawn or not, the quota should be cleaned up by gfs2quotacleanup().

Otherwise, struct gfs2sbd will be freed before gfs2qddealloc (rcu callback) has run for all gfs2quota_data objects, resulting in use-after-free.

Also, gfs2destroythreads() and gfs2quotacleanup() is already called by gfs2makefsro(), so in gfs2putsuper(), after calling gfs2makefsro(), there is no need to call them again.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

f66af88e33212b57ea86da2c5d66c0d9d5c46344

Fixed

08a28272faa750d4357ea2cb48d2baefd778ea81

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

f66af88e33212b57ea86da2c5d66c0d9d5c46344

Fixed

bdcb8aa434c6d36b5c215d02a9ef07551be25a37

Affected versions

v6.*

v6.5

v6.5-rc6

v6.5-rc7

v6.6

v6.6-rc1

v6.6-rc2

v6.6-rc3

v6.6-rc4

v6.6-rc5

v6.6-rc6

v6.6-rc7

v6.6.1

v6.6.2

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

6.6.0

Fixed

6.6.3