CVE-2023-53081
ocfs2: fix data corruption after failed write
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
02 may 2025Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
In the Linux kernel, the following vulnerability has been resolved:
ocfs2: fix data corruption after failed write
When buffered write fails to copy data into underlying page cache page,
ocfs2_write_end_nolock() just zeroes out and dirties the page. This can
leave dirty page beyond EOF and if page writeback tries to write this page
before write succeeds and expands i_size, page gets into inconsistent
state where page dirty bit is clear but buffer dirty bits stay set
resulting in page data never getting written and so data copied to the
page is lost. Fix the problem by invalidating page beyond EOF after
failed write.
Productos afectados
Linux · LinuxReferencias
https://git.kernel.org/stable/c/1629f6f522b2d058019710466a84b240683bbee3https://git.kernel.org/stable/c/205759c6c18f54659b0b5976b14a52d1b3eb9f57https://git.kernel.org/stable/c/47eb055ad3588fc96d34e9e1dd87b210ce62906bhttps://git.kernel.org/stable/c/4c24eb49ab44351424ac8fe8567f91ea48a06089https://git.kernel.org/stable/c/90410bcf873cf05f54a32183afff0161f44f9715https://git.kernel.org/stable/c/91d7a4bd5656552d6259e2d0f8859f9e8cc5ef68https://git.kernel.org/stable/c/a9e53869cb43c96d6d851c491fd4e26430ab6ba6https://git.kernel.org/stable/c/c26f3ff4c0be590c1250f945ac2e4fc5fcdc5f45