Race Condition Vulnerability in Linux Kernel f2fs Filesystem by Vendor Linux
CVE-2023-53447

4.7MEDIUM

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2025

What is CVE-2023-53447?

A vulnerability in the Linux kernel's f2fs filesystem can lead to a race condition when the filesystem is remounted with read-write access. This condition arises as two threads (Thread A and Thread B) simultaneously execute operations that modify the state of the filesystem. While one thread attempts to remount the filesystem, another may call the fallocate operation, leading to potential access of a NULL pointer and causing instability. The issue is triggered by the default mount options being reset, creating a gap where the race condition can exploit timing discrepancies between the operations. This highlights the necessity for close attention to thread synchronization when managing filesystem states.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 98e4da8ca301e062d79ae168c67e56f3c3de3ce4 < 115557cc226a927924f2d7d1980ccbf6e3b3bb36

Linux 98e4da8ca301e062d79ae168c67e56f3c3de3ce4 < 458c15dfbce62c35fefd9ca637b20a051309c9f1

Linux 3.8

References

https://git.kernel.org/stable/c/115557cc226a927924f2d7d19...
https://git.kernel.org/stable/c/458c15dfbce62c35fefd9ca63...

CVSS V3.1

Score:
4.7
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.