Additional context
Data currently shows affected versions as v5.17-rc1 to v6.1-rc7. However, the it appears the issue was fixed in 5.15 briefly. Then in 5.15.83 and 5.10.162 the entire driver including the fix was actually backported to older stable releases 5.15 and 5.10, and the directory was moved without any git history from fs/ to io_uring/.
Change Type Requested Update
CVE id number CVE-2023-0468
References https://nvd.nist.gov/vuln/detail/CVE-2023-0468
I believe there were actually two fixes for this issue: https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=12ad3d2d6c5b0131a6052de91360849e3e154846 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=a26a35e9019fd70bf3cf647dcfdae87abc7bacea
Fixed in 5.15.82 via: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=df4b177b48516da64b988722a22d93d257dcda9a https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/commit/?id=4b702b7d11ce1b9d26fc6d7c5a7ef4ac1d455048
Additional context Data currently shows affected versions as v5.17-rc1 to v6.1-rc7. However, the it appears the issue was fixed in 5.15 briefly. Then in 5.15.83 and 5.10.162 the entire driver including the fix was actually backported to older stable releases 5.15 and 5.10, and the directory was moved without any git history from fs/ to io_uring/.