CVE-2023-53800

In the Linux kernel, the following vulnerability has been resolved: ubi: Fix use-after-free when volume resizing failed There is an use-after-free problem reported by KASAN: ================================================================== BUG: KASAN: use-after-free in ubiebacopytable+0x11f/0x1c...

CVE-2023-53800

CVE-2023-53800 affects the Linux kernel ubi (UBI) layer. The issue is a use-after-free during volume resize: when ubi_change_vtbl_record() returns an error in ubi_resize_volume(), the code path frees new_eba_tbl on error, but new_eba_tbl is still held by vol->eba_tbl in ubi_eba_replace_table()...