CVE-2023-54297

medium

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: fix memory leak after finding block group with super blocks At exclude_super_stripes(), if we happen to find a block group that has super blocks mapped to it and we are on a zoned filesystem, we error out as this is not supposed to happen, indicating either a bug or maybe some memory corruption for example. However we are exiting the function without freeing the memory allocated for the logical address of the super blocks. Fix this by freeing the logical address.

References

https://git.kernel.org/stable/c/f1a07c2b4e2c473ec322b8b9ece071b8c88a3512

https://git.kernel.org/stable/c/cca627afb463a4b47721eac017516ba200de85c3

https://git.kernel.org/stable/c/c35ea606196243063e63785918c7c8fe27c45798

https://git.kernel.org/stable/c/ab80a901f8daca07c4a54af0ab0de745c9918294

Details

Source: Mitre, NVD

Published: 2025-12-30

Updated: 2025-12-31

Risk Information

CVSS v2

Base Score: 3.8

Vector: CVSS2#AV:L/AC:H/Au:S/C:N/I:N/A:C

Severity: Low

CVSS v3

Base Score: 4.7

Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018