CVE-2023-53695

In the Linux kernel, the following vulnerability has been resolved:

udf: Detect system inodes linked into directory hierarchy

When UDF filesystem is corrupted, hidden system inodes can be linked
into directory hierarchy which is an avenue for further serious
corruption of the filesystem and kernel confusion as noticed by syzbot
fuzzed images. Refuse to access system inodes linked into directory
hierarchy and vice versa.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
LinuxCNA
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 8%
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.244-1
fixed
bookworm
6.1.148-1
fixed
bookworm (security)
6.1.153-1
fixed
trixie
6.12.43-1
fixed
trixie (security)
6.12.48-1
fixed
forky
6.16.9-1
fixed
sid
6.16.12-2
fixed
References
https://git.kernel.org/stable/c/1dc71eeb198a8daa17d0c995998a53b0b749a158
https://git.kernel.org/stable/c/1f328751b65c49c13a312d67a3bf27766b85baf7
https://git.kernel.org/stable/c/37e74003d81e79457535cbbdfa1603431c03fac0
https://git.kernel.org/stable/c/85a37983ec69cc9fcd188bc37c4de15ee326355a
https://git.kernel.org/stable/c/9e3b5ef7d02eaa6553e79b4af9bd99227280f245
https://git.kernel.org/stable/c/a44ec34b90440ada190924f5908b97026504fdcd
https://git.kernel.org/stable/c/d747b31e2925a2f384e7dd1901a2e5bc5f984ed8