CVE-2023-2612

CVSS v3.1 4.7 (Medium)

EPSS 0.04 % (5^th)

Affected Products 1

Advisories 13

Jean-Baptiste Cayrou discovered that the shiftfs file system in the Ubuntu Linux kernel contained a race condition when handling inode locking in some situations. A local attacker could use this to cause a denial of service (kernel deadlock).

Weaknesses

CWE-667: Improper Locking

CVE Status: PUBLISHED
CNA: Canonical Ltd.
Published Date: 2023-05-31 00:15:10
(15 months ago)
Updated Date: 2023-06-22 15:15:12
(15 months ago)

Affected Products

Canonical

Ubuntu Linux

Configuration #1

		CPE23	From	Up To
	Canonical Ubuntu Linux 20.04	cpe:2.3:o:canonical:ubuntu_linux:20.04:::*:lts
	Canonical Ubuntu Linux 22.04	cpe:2.3:o:canonical:ubuntu_linux:22.04:::*:lts
	Canonical Ubuntu Linux 22.10	cpe:2.3:o:canonical:ubuntu_linux:22.10:::*:-