Security tracker / CVE-2023-37454

CVE-2023-37454

use-after-free in udf_put_super and udf_close_lvid functions in fs/udf/super.c

References

• Debian security tracker
• cve.org
• https://lore.kernel.org/all/00000000000056e02f05dfb6e11a%40google.com/T/
• https://syzkaller.appspot.com/bug?extid=60864ed35b1073540d57
• https://syzkaller.appspot.com/bug?extid=61564e5023b7229ec85d
• https://syzkaller.appspot.com/bug?extid=26873a72980f8fa8bc55

Notes

 carnil> There might be no upstream fix for it from upstream. As by
 carnil> stated on the upstream thread about the issue: the reproducer
 carnil> does modify the block device while the filesystem is mounted.

Bugs

Status

Branch	Status
upstream	needed
6.18-upstream-stable
6.17-upstream-stable
6.12-upstream-stable
6.6-upstream-stable
6.1-upstream-stable	needed
5.10-upstream-stable	needed
sid	needed
6.12-trixie-security	needed
6.1-bookworm-security	needed
5.10-bullseye-security	needed