CVE-2023-53804
Published: Dec 9, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix use-after-free bug of nilfs_root in nilfs_evict_inode() During unmount process of nilfs2, nothing holds nilfs_root structure after nilfs2 detaches its writer in nilfs_detach_log_writer(). However, since nilfs_evict_inode() uses nilfs_root for some cleanup operations, it may cause use-after-free read if inodes are left in "garbage_list" and released by nilfs_dispose_list() at the end of nilfs_detach_log_writer(). Fix this issue by modifying nilfs_evict_inode() to only clear inode without additional metadata changes that use nilfs_root if the file system is degraded to read-only or the writer is detached.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected e912a5b66837ee89fb025e67b5efeaa11930c2ce - < f31e18131ee2ce80a4da5c808221d25b1ae9ad6daffected e912a5b66837ee89fb025e67b5efeaa11930c2ce - < 2a782ea8ebd712a458466e3103e2881b4f886cb5affected e912a5b66837ee89fb025e67b5efeaa11930c2ce - < 116d53f09ff52e6f98e3fe1f85d8898d6ba26c68affected e912a5b66837ee89fb025e67b5efeaa11930c2ce - < 6b4205ea97901f822004e6c8d59484ccfda03faaaffected e912a5b66837ee89fb025e67b5efeaa11930c2ce - < b8427b8522d9ede53015ba45a9978ba68d1162f5+3 more versions |
Linux | Linux | affected 2.6.37unaffected 0 - < 2.6.37unaffected 4.14.316 - <= 4.14.*unaffected 4.19.284 - <= 4.19.*unaffected 5.4.244 - <= 5.4.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now