Home

Description

In the Linux kernel, the following vulnerability has been resolved: dm flakey: don't corrupt the zero page When we need to zero some range on a block device, the function __blkdev_issue_zero_pages submits a write bio with the bio vector pointing to the zero page. If we use dm-flakey with corrupt bio writes option, it will corrupt the content of the zero page which results in crashes of various userspace programs. Glibc assumes that memory returned by mmap is zeroed and it uses it for calloc implementation; if the newly mapped memory is not zeroed, calloc will return non-zeroed memory. Fix this bug by testing if the page is equal to ZERO_PAGE(0) and avoiding the corruption in this case.

PUBLISHED Reserved 2025-12-30 | Published 2025-12-30 | Updated 2025-12-30 | Assigner Linux

Product status

Default status
unaffected

c6cd92fcabd6cc78bb1808c6a18245c842722fc1 (git) before b7f8892f672222dbfcc721f51edc03963212b249
affected

d4c637af2e56ee1ec66ee34d0ac5a13c75911aec (git) before 98e311be44dbe31ad9c42aa067b2359bac451fda
affected

a00f5276e26636cbf72f24f79831026d2e2868e7 (git) before 3c4a56ef7c538d16c1738ba0ccea9e7146105b5a
affected

a00f5276e26636cbf72f24f79831026d2e2868e7 (git) before f2b478228bfdd11e358c5bc197561331f5d5c394
affected

a00f5276e26636cbf72f24f79831026d2e2868e7 (git) before ff60b2bb680ebcaf8890814dd51084a022891469
affected

a00f5276e26636cbf72f24f79831026d2e2868e7 (git) before be360c83f2d810493c04f999d69ec9152981e0c0
affected

a00f5276e26636cbf72f24f79831026d2e2868e7 (git) before 63d31617883d64b43b0e2d529f0751f40713ecae
affected

a00f5276e26636cbf72f24f79831026d2e2868e7 (git) before f50714b57aecb6b3dc81d578e295f86d9c73f078
affected

1ed7c9f45fb893877ffa7cedd7aa61beaadbb328 (git)
affected

Default status
affected

5.0
affected

Any version before 5.0
unaffected

4.14.308 (semver)
unaffected

4.19.276 (semver)
unaffected

5.4.235 (semver)
unaffected

5.10.173 (semver)
unaffected

5.15.99 (semver)
unaffected

6.1.16 (semver)
unaffected

6.2.3 (semver)
unaffected

6.3 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/b7f8892f672222dbfcc721f51edc03963212b249

git.kernel.org/...c/98e311be44dbe31ad9c42aa067b2359bac451fda

git.kernel.org/...c/3c4a56ef7c538d16c1738ba0ccea9e7146105b5a

git.kernel.org/...c/f2b478228bfdd11e358c5bc197561331f5d5c394

git.kernel.org/...c/ff60b2bb680ebcaf8890814dd51084a022891469

git.kernel.org/...c/be360c83f2d810493c04f999d69ec9152981e0c0

git.kernel.org/...c/63d31617883d64b43b0e2d529f0751f40713ecae

git.kernel.org/...c/f50714b57aecb6b3dc81d578e295f86d9c73f078

cve.org (CVE-2023-54317)

nvd.nist.gov (CVE-2023-54317)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.