CVE-2023-4389
CVSS 3.1 Score 7.1 of 10 (high)
Details
Published Aug 16, 2023
Updated: Dec 22, 2023
CWE ID 415
Summary
CVE-2023-4389 is a vulnerability affecting the btrfs filesystem in the Linux Kernel. The issue lies in the function btrfs_get_root_ref within fs/btrfs/disk-io.c, where a double decrement of the reference count occurs. This flaw can enable a local attacker with user privileges to cause a system crash or potentially leak sensitive internal kernel information.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Linux Kernel
Affected Vendors
- LINUX