Linux Kernel ext2 Vulnerability in Page Alignment and DAX Handling by The Linux Foundation
CVE-2023-53323

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 September 2025

What is CVE-2023-53323?

A vulnerability exists in the Linux kernel related to ext2 file systems where improper handling of page alignment in DAX (Direct Access) operations can lead to unexpected behaviors or crashes. Specifically, when a length value of zero is passed to the dax_zero_range() function, it results in a failure within ext2_get_blocks(), triggering a kernel bug. This can be exploited in environments utilizing filesystem DAX on persistent memory devices, posing a risk to application stability and data integrity.

Affected Version(s)

Linux 2aa3048e03d38d5358be2553d4b638c1a018498c < 9e54fd14bd143c261e52fde74355e85e9526c58c

Linux 2aa3048e03d38d5358be2553d4b638c1a018498c < 5cee8bfb8cbd99c97aff85d2bf066b6a496e13ab

Linux 2aa3048e03d38d5358be2553d4b638c1a018498c

References

https://git.kernel.org/stable/c/9e54fd14bd143c261e52fde74...
https://git.kernel.org/stable/c/5cee8bfb8cbd99c97aff85d2b...
https://git.kernel.org/stable/c/fcced95b6ba2a507a83b8b3e0...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2023-53323 : Linux Kernel ext2 Vulnerability in Page Alignment and DAX Handling by The Linux Foundation