vulnerability
Amazon Linux AMI 2: CVE-2023-52760: Security patch for kernel-livepatch-5.10.227-219.884, kernel-livepatch-5.10.228-219.884, kernel-livepatch-5.10.230-223.885, kernel-livepatch-5.10.233-223.887 (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | May 21, 2024 | Feb 4, 2025 | Feb 19, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
May 21, 2024
Added
Feb 4, 2025
Modified
Feb 19, 2025
Description
In the Linux kernel, the following vulnerability has been resolved:
gfs2: Fix slab-use-after-free in gfs2_qd_dealloc
In gfs2_put_super(), whether withdrawn or not, the quota should
be cleaned up by gfs2_quota_cleanup().
Otherwise, struct gfs2_sbd will be freed before gfs2_qd_dealloc (rcu
callback) has run for all gfs2_quota_data objects, resulting in
use-after-free.
Also, gfs2_destroy_threads() and gfs2_quota_cleanup() is already called
by gfs2_make_fs_ro(), so in gfs2_put_super(), after calling
gfs2_make_fs_ro(), there is no need to call them again.
Solutions
amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-227-219-884amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-228-219-884amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-230-223-885amazon-linux-ami-2-upgrade-kernel-livepatch-5-10-233-223-887
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.