CVE-2023-54128

medium

Description

In the Linux kernel, the following vulnerability has been resolved: fs: drop peer group ids under namespace lock When cleaning up peer group ids in the failure path we need to make sure to hold on to the namespace lock. Otherwise another thread might just turn the mount from a shared into a non-shared mount concurrently.

References

https://git.kernel.org/stable/c/ddca03d97daa7b07b60c52e3d3060762732c6666

https://git.kernel.org/stable/c/cb2239c198ad9fbd5aced22cf93e45562da781eb

https://git.kernel.org/stable/c/65c324d3f35c05e37afec39ac80743583fdcc96c

https://git.kernel.org/stable/c/0af8fae81d8b7f1beddc17c5d4cfa43235134648

Details

Source: Mitre, NVD

Published: 2025-12-24

Updated: 2025-12-29

Risk Information

CVSS v2

Base Score: 5.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018