Home > Vulnerability Database > CVE-2023-52436

Mend.io Vulnerability Database

CVE-2023-52436

Good to know:

Date: February 20, 2024

In the Linux kernel, the following vulnerability has been resolved: f2fs: explicitly null-terminate the xattr list When setting an xattr, explicitly null-terminate the xattr list. This eliminates the fragile assumption that the unused xattr space is always zeroed.

Language: C

Severity Score

7.8

Related Resources (10)

Url: https://git.kernel.org/stable/c/32a6cfc67675ee96fe107aeed5af9776fec63f11

Url: https://git.kernel.org/stable/c/5de9e9dd1828db9b8b962f7ca42548bd596deb8a

Url: https://git.kernel.org/stable/c/e26b6d39270f5eab0087453d9b544189a38c8564

Url: https://git.kernel.org/stable/c/f6c30bfe5a49bc38cae985083a11016800708fea

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-52436

Url: https://git.kernel.org/stable/c/16ae3132ff7746894894927c1892493693b89135

Url: https://git.kernel.org/stable/c/2525d1ba225b5c167162fa344013c408e8b4de36

Url: https://git.kernel.org/stable/c/12cf91e23b126718a96b914f949f2cdfeadc7b2a

Url: https://git.kernel.org/stable/c/3e47740091b05ac8d7836a33afd8646b6863ca52

Url: https://www.mend.io/vulnerability-database/CVE-2023-52436

Severity Score

7.8

Top Fix

Upgrade Version

Upgrade to version v4.19.306,v5.4.268,v5.10.209,v5.15.148,v6.1.74,v6.6.13,v6.7.1

Learn More

CVSS v3.1

Base Score:	7.8
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2023-52436

Good to know:

Date: February 20, 2024

Language: C

Severity Score

Related Resources (10)

Severity Score

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?