CVE-2023-52779

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to the Linux kernel's filesystem handling, specifically the getattr interface function. When vfs getattr nosec() calls a filesystem's getattr interface function, it should propagate the 'nosec' flag to avoid unnecessary security checks. However, in a recent code change, vfs getattr nosec() ended up calling vfs getattr() in overlayfs, which in turn called security inode getattr() on an exiting process without current->fs set, causing a kernel NULL pointer dereference. The introduction of the getattr flag GETATTR NOSEC and the new getattr flags parameter allows the 'nosec' flag to be passed to the getattr interface function, preventing the unnecessary security checks and avoiding the NULL pointer dereference.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.