Lucene search

K
cvelistRedhatCVELIST:CVE-2023-3212
HistoryJun 23, 2023 - 12:00 a.m.

CVE-2023-3212

2023-06-2300:00:00
CWE-476
redhat
www.cve.org
7
gfs2
linux kernel
null pointer dereference
cve-2023-3212
kernel panic
local user
file system

AI Score

6.5

Confidence

High

EPSS

0

Percentile

5.1%

A NULL pointer dereference issue was found in the gfs2 file system in the Linux kernel. It occurs on corrupt gfs2 file systems when the evict code tries to reference the journal descriptor structure after it has been freed and set to NULL. A privileged local user could use this flaw to cause a kernel panic.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "Linux kernel (gfs2 file system)",
    "versions": [
      {
        "version": "Fixed in kernel 6.4-rc2",
        "status": "affected"
      }
    ]
  }
]