There is a null-pointer-dereference flaw found in f2fs_write_end_io in fs/f2fs/data.c in the Linux kernel. This flaw allows a local privileged user to cause a denial of service problem.
References
Link | Resource |
---|---|
https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html | Mailing List Third Party Advisory |
https://lore.kernel.org/linux-f2fs-devel/20230522124203.3838360-1-chao%40kernel.org/ | Patch |
https://security.netapp.com/advisory/ntap-20230929-0002/ | Third Party Advisory |
https://www.debian.org/security/2023/dsa-5480 | Third Party Advisory |
https://www.debian.org/security/2023/dsa-5492 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
History
01 Feb 2024, 01:27
Type | Values Removed | Values Added |
---|---|---|
First Time |
Netapp h500s Firmware
Netapp h410c Netapp h410s Firmware Debian debian Linux Netapp h300s Netapp h500s Netapp h700s Debian Netapp h410s Netapp Netapp h300s Firmware Netapp h700s Firmware Netapp h410c Firmware |
|
References | (DEBIAN) https://www.debian.org/security/2023/dsa-5480 - Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html - Mailing List, Third Party Advisory | |
References | () https://lore.kernel.org/linux-f2fs-devel/20230522124203.3838360-1-chao%40kernel.org/ - Patch | |
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20230929-0002/ - Third Party Advisory | |
References | (DEBIAN) https://www.debian.org/security/2023/dsa-5492 - Third Party Advisory | |
CPE | cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:* cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:* cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:* cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:* |
07 Nov 2023, 04:13
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
20 Oct 2023, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
29 Sep 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
10 Sep 2023, 12:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
19 Aug 2023, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
02 Jun 2023, 01:07
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* | |
CWE | CWE-362 CWE-476 |
|
First Time |
Linux
Linux linux Kernel |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 4.7 |
References | (MISC) https://lore.kernel.org/linux-f2fs-devel/20230522124203.3838360-1-chao@kernel.org/ - Mailing List, Patch |
26 May 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-05-26 22:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-2898
Mitre link : CVE-2023-2898
CVE.ORG link : CVE-2023-2898
JSON object : View
Products Affected
netapp
- h410c_firmware
- h300s_firmware
- h500s_firmware
- h410s_firmware
- h500s
- h700s_firmware
- h410s
- h410c
- h300s
- h700s
linux
- linux_kernel
debian
- debian_linux