SB20251210115 - Improper locking in Linux kernel nilfs2
Published: December 10, 2025 Updated: December 12, 2025
Security Bulletin ID
SB20251210115
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Improper locking (CVE-ID: CVE-2023-53845)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper locking within the nilfs_bmap_lookup_at_level() function in fs/nilfs2/bmap.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/25457d07c8146e57d28906c663def033dc425af6
- https://git.kernel.org/stable/c/34c5f17222b50c79848bb03ec8811648813e6a45
- https://git.kernel.org/stable/c/5b29661669cb65b9750a3cf70ed3eaf947b92167
- https://git.kernel.org/stable/c/8a89d36a07afe1ed4564df51fefa2bb556c85412
- https://git.kernel.org/stable/c/8d07d9119642ba43d21f8ba64d51d01931096b20
- https://git.kernel.org/stable/c/a6a491c048882e7e424d407d32cba0b52d9ef2bf
- https://git.kernel.org/stable/c/cfb0bb4fbd40c1f06da7e9f88c0a2d46155b90c2
- https://git.kernel.org/stable/c/d536f9976bb04e9c84cf80045a9355975e418f41
- https://git.kernel.org/stable/c/fe1cbbcb1a2532ee1654e1ff121be8906d83c6f0
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.243