Open mend-bolt-for-github[bot] opened 11 months ago
There is a null-pointer-dereference flaw found in f2fs_write_end_io in fs/f2fs/data.c in the Linux kernel. This flaw allows a local privileged user to cause a denial of service problem.
Publish Date: 2023-05-26
URL: CVE-2023-2898
Base Score Metrics: - Exploitability Metrics: - Attack Vector: Local - Attack Complexity: High - Privileges Required: Low - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: None - Integrity Impact: None - Availability Impact: High
Type: Upgrade version
Origin: https://www.linuxkernelcves.com/cves/CVE-2023-2898
Release Date: 2023-05-26
Fix Resolution: v5.10.188,v5.15.121,v6.1.39,v6.4.4,v6.5-rc1
Step up your Open Source Security Game with Mend here
CVE-2023-2898 - Medium Severity Vulnerability
Vulnerable Libraries - linux-yoctov5.4.51, linux-yoctov5.4.51, linux-yoctov5.4.51
Vulnerability Details
There is a null-pointer-dereference flaw found in f2fs_write_end_io in fs/f2fs/data.c in the Linux kernel. This flaw allows a local privileged user to cause a denial of service problem.
Publish Date: 2023-05-26
URL: CVE-2023-2898
CVSS 3 Score Details (4.7)
Base Score Metrics: - Exploitability Metrics: - Attack Vector: Local - Attack Complexity: High - Privileges Required: Low - User Interaction: None - Scope: Unchanged - Impact Metrics: - Confidentiality Impact: None - Integrity Impact: None - Availability Impact: High
For more information on CVSS3 Scores, click here.Suggested Fix
Type: Upgrade version
Origin: https://www.linuxkernelcves.com/cves/CVE-2023-2898
Release Date: 2023-05-26
Fix Resolution: v5.10.188,v5.15.121,v6.1.39,v6.4.4,v6.5-rc1
Step up your Open Source Security Game with Mend here