CVE-2023-52602

2024-03-0600:00:00

ubuntu.com

linux kernel

vulnerability

jfs

slab-out-of-bounds read

bound check

AI Score

7.7

Confidence

High

EPSS

Percentile

13.0%

JSON

In the Linux kernel, the following vulnerability has been resolved: jfs:
fix slab-out-of-bounds Read in dtSearch Currently while searching for
current page in the sorted entry table of the page there is a out of bound
access. Added a bound check to fix the error. Dave: Set return code to -EIO

Notes

Author	Note
rodrigo-zaiden	USN-6765-1 for linux-oem-6.5 wrongly stated that this CVE was fixed in version 6.5.0-1022.23. The mentioned notice was revoked and the state of the fix for linux-oem-6.5 was recovered to the previous state.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-225.237UNKNOWN
ubuntu20.04noarchlinux< 5.4.0-181.201UNKNOWN
ubuntu22.04noarchlinux< 5.15.0-106.116UNKNOWN
ubuntu23.10noarchlinux< 6.5.0-35.35UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-254.288UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1168.181UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1124.134UNKNOWN
ubuntu22.04noarchlinux-aws< 5.15.0-1061.67UNKNOWN
ubuntu23.10noarchlinux-aws< 6.5.0-1020.20UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1131.137UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< 4.15.0-225.237	UNKNOWN
ubuntu	20.04	noarch	linux	< 5.4.0-181.201	UNKNOWN
ubuntu	22.04	noarch	linux	< 5.15.0-106.116	UNKNOWN
ubuntu	23.10	noarch	linux	< 6.5.0-35.35	UNKNOWN
ubuntu	16.04	noarch	linux	< 4.4.0-254.288	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< 4.15.0-1168.181	UNKNOWN
ubuntu	20.04	noarch	linux-aws	< 5.4.0-1124.134	UNKNOWN
ubuntu	22.04	noarch	linux-aws	< 5.15.0-1061.67	UNKNOWN
ubuntu	23.10	noarch	linux-aws	< 6.5.0-1020.20	UNKNOWN
ubuntu	14.04	noarch	linux-aws	< 4.4.0-1131.137	UNKNOWN