CVE-2023-54050
Published: Dec 24, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix memleak when insert_old_idx() failed Following process will cause a memleak for copied up znode: dirty_cow_znode zn = copy_znode(c, znode); err = insert_old_idx(c, zbr->lnum, zbr->offs); if (unlikely(err)) return ERR_PTR(err); // No one refers to zn. Fetch a reproducer in [Link]. Function copy_znode() is split into 2 parts: resource allocation and znode replacement, insert_old_idx() is split in similar way, so resource cleanup could be done in error handling path without corrupting metadata(mem & disk). It's okay that old index inserting is put behind of add_idx_dirt(), old index is used in layout_leb_in_gaps(), so the two processes do not depend on each other.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1e51764a3c2ac05a23a22b2a95ddee4d9bffb16d - < cc29c7216d7f057eb0613b97dc38c7e1962a88d2affected 1e51764a3c2ac05a23a22b2a95ddee4d9bffb16d - < 6f2eee5457bc48b0426dedfd78cdbdea241a6edbaffected 1e51764a3c2ac05a23a22b2a95ddee4d9bffb16d - < 66e9f2fb3e753f820bec2a98e8c6387029988320affected 1e51764a3c2ac05a23a22b2a95ddee4d9bffb16d - < 3ae75f82c33fa1b4ca2006b55c84f4ef4a428d4daffected 1e51764a3c2ac05a23a22b2a95ddee4d9bffb16d - < ef9aac603659e9ffe7d69ae16e3f0fc0991a965b+3 more versions |
Linux | Linux | affected 2.6.27unaffected 0 - < 2.6.27unaffected 4.19.283 - <= 4.19.*unaffected 5.4.243 - <= 5.4.*unaffected 5.10.180 - <= 5.10.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now