CVE-2023-53473
BaseFortify
Publication date: 2025-10-01
Last updated on: 2025-10-02
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | From 5.15.160 (inc) to 5.16 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves the ext4_dirhash() function in the Linux kernel's ext4 filesystem. Originally, ext4_dirhash() almost never failed, but with the addition of support for encrypted, casefolded file names, it can now fail. The issue was that callers of ext4_dirhash() did not properly check for these failures, potentially leading to unhandled errors. The vulnerability was resolved by improving error handling to ensure failures are properly detected and propagated.
How can this vulnerability impact me? :
If the ext4_dirhash() function fails and the errors are not properly handled, it could lead to unexpected behavior or instability in the filesystem operations that rely on this function. This might result in data access issues or corruption when dealing with encrypted or casefolded file names on ext4 filesystems.