Description

In the Linux kernel, the following vulnerability has been resolved: ext4: update s_journal_inum if it changes after journal replay When mounting a crafted ext4 image, s_journal_inum may change after journal replay, which is obviously unreasonable because we have successfully loaded and replayed the journal through the old s_journal_inum. And the new s_journal_inum bypasses some of the checks in ext4_get_journal(), which may trigger a null pointer dereference problem. So if s_journal_inum changes after the journal replay, we ignore the change, and rewrite the current journal_inum to the superblock.

INFO

Published Date :

2025-05-02T15:55:36.852Z

Last Modified :

2026-01-05T10:18:09.686Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53091 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53091.

URL Resource
https://git.kernel.org/stable/c/3039d8b8692408438a618fac2776b629852663c3 cve-icon cve-icon
https://git.kernel.org/stable/c/499fef2030fb754c68b1c7cb3a799a3bc1d0d925 cve-icon cve-icon
https://git.kernel.org/stable/c/70e66bdeae4d0f7c8e87762f425b68aedd5e8955 cve-icon cve-icon
https://git.kernel.org/stable/c/ee0c5277d4fab920bd31345c49e193ecede9ecef cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025050220-CVE-2023-53091-9433@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53091 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53091 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact