Description

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to wait on block writeback for post_read case If inode is compressed, but not encrypted, it missed to call f2fs_wait_on_block_writeback() to wait for GCed page writeback in IPU write path. Thread A GC-Thread - f2fs_gc - do_garbage_collect - gc_data_segment - move_data_block - f2fs_submit_page_write migrate normal cluster's block via meta_inode's page cache - f2fs_write_single_data_page - f2fs_do_write_data_page - f2fs_inplace_write_data - f2fs_submit_page_bio IRQ - f2fs_read_end_io IRQ old data overrides new data due to out-of-order GC and common IO. - f2fs_read_end_io

INFO

Published Date :

2024-05-17T14:24:45.345Z

Last Modified :

2025-05-04T07:41:27.856Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-52682 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-52682.

URL Resource
https://git.kernel.org/stable/c/4535be48780431753505e74e1b1ad4836a189bc2 cve-icon cve-icon
https://git.kernel.org/stable/c/55fdc1c24a1d6229fe0ecf31335fb9a2eceaaa00 cve-icon cve-icon
https://git.kernel.org/stable/c/9bfd5ea71521d0e522ba581c6ccc5db93759c0c3 cve-icon cve-icon
https://git.kernel.org/stable/c/f904c156d8011d8291ffd5b6b398f3747e294986 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024051751-CVE-2023-52682-fae2@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-52682 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-52682 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact