Lucene search

PRIOn knowledge basePRION:CVE-2023-2612

HistoryMay 31, 2023 - 12:15 a.m.

Race condition

2023-05-3100:15:00

PRIOn knowledge base

www.prio-n.com

jean-baptiste cayrou

race condition

ubuntu linux kernel

shiftfs

file system

inode locking

local attacker

denial of service

kernel deadlock

5.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to cause a denial of service (kernel deadlock).

CPENameOperatorVersion
ubuntu_linuxeq20.04
ubuntu_linuxeq22.04
ubuntu_linuxeq22.10

Name	Operator	Version
ubuntu_linux	eq	20.04
ubuntu_linux	eq	22.04
ubuntu_linux	eq	22.10

References

packetstormsecurity.com/files/173087/Kernel-Live-Patch-Security-Notice-LSN-0095-1.html

git.launchpad.net/~ubuntu-kernel/ubuntu/+source/linux/+git/kinetic/commit/?id=02b47547824b1cd0d55c6744f91886f04de8947e

ubuntu.com/security/CVE-2023-2612

ubuntu.com/security/notices/USN-6122-1

ubuntu.com/security/notices/USN-6123-1

ubuntu.com/security/notices/USN-6124-1

ubuntu.com/security/notices/USN-6127-1