CVE-2023-53457

FS: JFS: Fix null-ptr-deref Read in txBegin

Severity Score

7.1

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: FS: JFS: Fix null-ptr-deref Read in txBegin Syzkaller reported an issue where txBegin may be called on a superblock in a read-only mounted filesystem which leads to NULL pointer deref. This could be solved by checking if the filesystem is read-only before calling txBegin, and returning with appropiate error code.

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2025-09-17 CVE Reserved
2025-10-01 CVE Published
2026-01-05 CVE Updated
2026-02-27 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (9)

URL	Tag	Source
https://git.kernel.org/stable/c/1da177e4c3f41524e886b7f1b8a0c1fc7321cac2	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/a7225e9e09519deb7e0c42eb6070029cc456e84d	2023-08-30
https://git.kernel.org/stable/c/1b4c144767736221cad92c132f72b3c6ed06a0ea	2023-08-30
https://git.kernel.org/stable/c/a7d17d6bd7cd4f6940b335ea7a6fce5b6d22adc2	2023-08-30
https://git.kernel.org/stable/c/2a3f20efe6c901d4c0871cfd1d8c65e2ade71fc1	2023-08-26
https://git.kernel.org/stable/c/3e94d0d378d2754b26fc54b429582553f7b53e15	2023-07-27
https://git.kernel.org/stable/c/3e5eb6c5ecd8ddb9cfea751cf30f9e23eac97ca3	2023-07-27
https://git.kernel.org/stable/c/fd2db13fb72ff18c633a48229589d42ceb89d1f8	2023-07-27
https://git.kernel.org/stable/c/47cfdc338d674d38f4b2f22b7612cc6a2763ba27	2023-06-23

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 4.14.324 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 4.14.324"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 4.19.293 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 4.19.293"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 5.4.255 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 5.4.255"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 5.10.192 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 5.10.192"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 5.15.123 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 5.15.123"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 6.1.42 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 6.1.42"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 6.4.7 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 6.4.7"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 2.6.12 < 6.5 Search vendor "Linux" for product "Linux Kernel" and version " >= 2.6.12 < 6.5"		en		Affected