CVE-2023-54281

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc7

Description The Linux kernel contained a flaw within the btrfs subsystem related to the ino lookup ioctl. Specifically, the issue arises when calling btrfs iget() to obtain an inode reference while holding a root's btree lock. If btrfs iget() needs to locate the inode from the root's btree, it may attempt to lock another or the same path within the same root btree, potentially leading to a deadlock. This deadlock can trigger a lock dependency splat, indicating a circular locking dependency.

Recommendations Update to a version newer than 6.5.0-rc7.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-833

Related Identifiers

BDU:2026-01196

CVE-2023-54281

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Linux Kernel

Btrfs

CVE-2023-54281

Weakness Enumeration

Related Identifiers

Affected Products

References · 1465