CVE-2023-53538

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.12.0-0 fbk13 clang 7455 gb24de3bdb045

Description The Linux kernel contains a flaw within the btrfs subsystem related to tree mod log handling. Specifically, a race condition exists during tree mod log rewind, potentially leading to a kernel panic. This issue arises when logical inode resolution utilizes a tree mod log sequence number and encounters a rewind operation on a busy node. The sequence of tree mod log operations can cause an out-of-bounds write during a memmove operation, resulting in the kernel panic.

Recommendations Update the Linux kernel to version 5.12.0-0 fbk13 clang 7455 gb24de3bdb045 or a later version to address this issue.

Exploit

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

AZL-77393

CVE-2023-53538

ECHO-6F04-CBF6-D6AC

SUSE-SU-2025:21040-1

SUSE-SU-2025:21052-1

SUSE-SU-2025:21056-1

SUSE-SU-2025:21064-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4128-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4140-1

SUSE-SU-2025:4141-1

SUSE-SU-2025:4301-1

SUSE-SU-2025_4128-1

SUSE-SU-2025_4140-1

SUSE-SU-2025_4301-1

Affected Products

Debian

Linux Kernel

Suse

Btrfs

CVE-2023-53538

Weakness Enumeration

Related Identifiers

Affected Products

References · 1014