CVE-2023-53506

Oct. 2, 2025, 7:11 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: udf: Do not bother merging very long extents When merging very long extents we try to push as much length as possible to the first extent. However this is unnecessarily complicated and not really worth the trouble. Furthermore there was a bug in the logic resulting in corrupting extents in the file as syzbot reproducer shows. So just don't bother with the merging of extents that are too long together.

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
a linux linux_kernel / / / / / / / /

References

https://git.kernel.org/stable/c/3d20e3b768aff32112bdce8d3219d923ae75f9f1
https://git.kernel.org/stable/c/53cafe1d6d8ef9f93318e5bfccc0d24f27d41ced
https://git.kernel.org/stable/c/5d029799d381a9ee06209a222cae75f04c5d5304
https://git.kernel.org/stable/c/7a965da79f2d22601f329cbfce588386b0847544
https://git.kernel.org/stable/c/965982feb333aefa9256c0fe188b5f1b958aef63
https://git.kernel.org/stable/c/9a8d602f0723586e668bae7e65c832ceb9bcc8bc
https://git.kernel.org/stable/c/adac9ac6d2e04ea0782b91a00ba10706002f3ec4
https://git.kernel.org/stable/c/d52252a1de4cf96a34f722b0cd8902d8ff78eb57

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-10-01
CVE-2023-53506

Timeline

Published: Oct. 1, 2025, 12:15 p.m.
Last Modified: Oct. 2, 2025, 7:11 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.