CVE-2023-53420
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
18/09/2025
Last modified:
19/09/2025
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
ntfs: Fix panic about slab-out-of-bounds caused by ntfs_listxattr()<br />
<br />
Here is a BUG report from syzbot:<br />
<br />
BUG: KASAN: slab-out-of-bounds in ntfs_list_ea fs/ntfs3/xattr.c:191 [inline]<br />
BUG: KASAN: slab-out-of-bounds in ntfs_listxattr+0x401/0x570 fs/ntfs3/xattr.c:710<br />
Read of size 1 at addr ffff888021acaf3d by task syz-executor128/3632<br />
<br />
Call Trace:<br />
ntfs_list_ea fs/ntfs3/xattr.c:191 [inline]<br />
ntfs_listxattr+0x401/0x570 fs/ntfs3/xattr.c:710<br />
vfs_listxattr fs/xattr.c:457 [inline]<br />
listxattr+0x293/0x2d0 fs/xattr.c:804<br />
<br />
Fix the logic of ea_all iteration. When the ea->name_len is 0,<br />
return immediately, or Add2Ptr() would visit invalid memory<br />
in the next loop.<br />
<br />
[almaz.alexandrovich@paragon-software.com: lines of the patch have changed]