CVE-2023-53511

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.18

Description The Linux kernel contains an issue where a file descriptor leak occurs when using io uring with filesystems that do not support non-waiting buffered reads, such as ocfs2. This can happen during operations like copying files using link-cp, leading to umount failures and potential system instability. The issue stems from a flaw in how file descriptors are handled during asynchronous read operations within the io uring framework. Specifically, the fget() function leaks a file descriptor when the filesystem returns -EOPNOTSUPP. The problem was introduced by commit a196c78b5443 in version 5.18. The issue can be reproduced by mounting an ocfs2 filesystem, copying a file to it, and then attempting to unmount the filesystem.

Recommendations Update to a version of the Linux kernel that includes the fix for this issue.