SB20251001131 - Buffer overflow in Linux kernel jfs
Published: October 1, 2025 Updated: October 27, 2025
Security Bulletin ID
SB20251001131
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Buffer overflow (CVE-ID: CVE-2023-53485)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory corruption within the dbAllocDmapLev() function in fs/jfs/jfs_dmap.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/0d9e678a82915633b99603f744e7735d1a673d72
- https://git.kernel.org/stable/c/39f6292d75959e8accac0b3e24090094ba0824e9
- https://git.kernel.org/stable/c/4e302336d5ca1767a06beee7596a72d3bdc8d983
- https://git.kernel.org/stable/c/53b0a362aca2583729e8ca2936ca657ff3247d88
- https://git.kernel.org/stable/c/6e7d9d76e5654bcdd3cdb7c9441a8113428ecebb
- https://git.kernel.org/stable/c/911b48eec45152822bccf45cd3563b48256b1520
- https://git.kernel.org/stable/c/bdf07ab1595b613b03f32dbb5cb379edfa1a7334
- https://git.kernel.org/stable/c/f2af019091f904ca08b3572ab0111238ad6d17b3
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.4.7