CVE-2023-52590
Last modified
CVE-2023-52590 is a medium-severity vulnerability rated 5.5/10 on the CVSS scale. In the Linux kernel, the following vulnerability has been resolved: ocfs2: Avoid touching renamed directory if parent does not change The VFS will not be locking moved directory if its parent does not change. Change ocfs2 rename code to avoid touching renamed directory if its parent does not change as without locking that can corrupt the filesystem.. EPSS estimates a 0.16% chance of exploitation in the next 30 days.
Description
In the Linux kernel, the following vulnerability has been resolved: ocfs2: Avoid touching renamed directory if parent does not change The VFS will not be locking moved directory if its parent does not change. Change ocfs2 rename code to avoid touching renamed directory if its parent does not change as without locking that can corrupt the filesystem.
Metrics
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | < 6.7.4 |
References
- https://git.kernel.org/stable/c/9d618d19b29c2943527e3a43da0a35aea91062fcMailing List, Patch
- https://git.kernel.org/stable/c/de940cede3c41624e2de27f805b490999f419df9Mailing List, Patch
- https://git.kernel.org/stable/c/9d618d19b29c2943527e3a43da0a35aea91062fcMailing List, Patch
- https://git.kernel.org/stable/c/de940cede3c41624e2de27f805b490999f419df9Mailing List, Patch
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2023-52590?
How severe is CVE-2023-52590?
How do I fix CVE-2023-52590?
Are you affected by CVE-2023-52590?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST