CVE-2023-4385
Summary
| CVE | CVE-2023-4385 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2023-08-16 17:15:00 UTC |
|---|
| Updated | 2023-11-07 04:22:00 UTC |
|---|
| Description | A NULL pointer dereference flaw was found in dbFree in fs/jfs/jfs_dmap.c in the journaling file system (JFS) in the Linux Kernel. This issue may allow a local attacker to crash the system due to a missing sanity check. |
|---|
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|
| Operating System |
Linux |
Linux Kernel |
All |
All |
All |
All |
References
| Reference | Source | Link | Tags |
|---|
| fs: jfs: fix possible NULL pointer dereference in dbFree() · torvalds/linux@0d4837f · GitHub |
MISC |
github.com |
|
| 2219272 – (CVE-2023-4385) CVE-2023-4385 TRIAGE kernel: jfs: NULL pointer dereference in dbFree() |
MISC |
bugzilla.redhat.com |
|
| cve-details |
MISC |
access.redhat.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 199765 Ubuntu Security Notification for Linux kernel Vulnerabilities (USN-6388-1)
- 379435 Alibaba Cloud Linux Security Update for cloud-kernel (ALINUX2-SA-2024:0012)
- 673449 EulerOS Security Update for kernel (EulerOS-SA-2023-2898)
- 673970 EulerOS Security Update for kernel (EulerOS-SA-2023-2879)
- 754863 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3680-1)
- 754866 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3684-1)
- 754869 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3681-1)
- 754876 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3687-1)
- 754883 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2023:3705-1)
