CVE-2023-52760

Advisory lineage Upstream: 0 Downstream: 17

Downstream

DEBIAN-CVE-2023-52760 DLA-4008-1 DSA-5731-1 UBUNTU-CVE-2023-52760 USN-6972-1 USN-6972-2

Modified

Published: 21 May 2024, 15:30

Last modified:11 May 2026, 19:32

Vulnerability Summary

Overall Risk (default)

medium

31/100

CVSS Score

7.8 HIGH

v3.1 (nvd)

EPSS Score

0.02% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

21 May 2024, 15:30

Published

Vulnerability first disclosed

11 May 2026, 19:32

Last Modified

Vulnerability information updated

Description

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix slab-use-after-free in gfs2_qd_dealloc In gfs2_put_super(), whether withdrawn or not, the quota should be cleaned up by gfs2_quota_cleanup(). Otherwise, struct gfs2_sbd will be freed before gfs2_qd_dealloc (rcu callback) has run for all gfs2_quota_data objects, resulting in use-after-free. Also, gfs2_destroy_threads() and gfs2_quota_cleanup() is already called by gfs2_make_fs_ro(), so in gfs2_put_super(), after calling gfs2_make_fs_ro(), there is no need to call them again.

CVSS Metrics

v3.1•HIGH•Score: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Trends

Current EPSS score: 0.02%• Percentile: 6%

Techniques & Countermeasures

CWE-416•Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

Affected Systems

linux•linux
≥ f66af88e33212b57ea86da2c5d66c0d9d5c46344, < 08a28272faa750d4357ea2cb48d2baefd778ea81 | ≥ f66af88e33212b57ea86da2c5d66c0d9d5c46344, < bdcb8aa434c6d36b5c215d02a9ef07551be25a37 | 6.6
linux•linux_kernel
< 6.1.97 | ≥ 6.2, < 6.6.3