CVE-2023-54285

HIGH EPSS 5.7%
Published Dec 30, 20256mo ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Dec 30, 2025 6mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: iomap: Fix possible overflow condition in iomap_write_delalloc_scan folio_next_index() returns an unsigned long value which left shifted by PAGE_SHIFT could possibly cause an overflow on 32-bit system. Instead use folio_pos(folio) + folio_size(folio), which does this correctly.

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
5.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-787 Out-of-bounds Write Memory Safety

Affected Products 2

VendorProductVersionRange
linuxlinux_kernel*≥6.1.92  –  <6.1.162
linuxlinux_kernel*≥6.2  –  <6.5.5

References 3

  • git.kernel.org https://git.kernel.org/stable/c/0c6cf409093f307ee05114f834516730c0da5b21
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5c281b0c5d18c8eeb1cfd5023f4adb153e6d1240
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/eee2d2e6ea5550118170dbd5bb1316ceb38455fb
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0c6cf409093f307ee05114f834516730c0da5b21
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5c281b0c5d18c8eeb1cfd5023f4adb153e6d1240
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/eee2d2e6ea5550118170dbd5bb1316ceb38455fb
    Patch