CVE-2023-53285

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains an issue in the ext4 filesystem related to bounds checking within the get max inline xattr value size() function. A corruption of the inode table can occur if writing to the block device while the filesystem is mounted bypasses initial extended attribute checks. This can lead to reading beyond allocated memory.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALSA-2025_16880

BDU:2026-02191

CVE-2023-53285

RHSA-2024:2394

RHSA-2024_2394

Affected Products

Astra Linux

Linux Kernel

Red Hat

Ext4

CVE-2023-53285

Weakness Enumeration

Related Identifiers

Affected Products

References · 34