GSD-2023-1000399

See a problem?
Please try reporting it to the source first.
Source
https://data.gsd.id/GSD-2023-1000399
Import Source
https://github.com/cloudsecurityalliance/gsd-database/blob/main/2023/1000xxx/GSD-2023-1000399.json
JSON Data
https://api.osv.dev/v1/vulns/GSD-2023-1000399
Published
2023-01-17T17:36:31.918023Z
Modified
2023-02-22T07:29:35.676846Z
Summary
fs/ntfs3: don't hold ni_lock when calling truncate_setsize()
Details

fs/ntfs3: don't hold nilock when calling truncatesetsize()

This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.19 by commit 6bb6b1c6b0c31e36736b87a39dd1cbbd9d5ec22f, it was introduced in version v5.15 by commit 4342306f0f0d5ff4315a204d315c1b51b914fca5. For more details please see the references link.

References

Affected packages

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/
Events
Introduced
4342306f0f0d5ff4315a204d315c1b51b914fca5
Limit
6bb6b1c6b0c31e36736b87a39dd1cbbd9d5ec22f

Affected versions

v5.*
v5.14
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.0.1
v6.0.10
v6.0.11
v6.0.12
v6.0.13
v6.0.14
v6.0.15
v6.0.16
v6.0.17
v6.0.18
v6.0.2
v6.0.3
v6.0.4
v6.0.5
v6.0.6
v6.0.7
v6.0.8
v6.0.9

Database specific

source 
"https://github.com/cloudsecurityalliance/gsd-database/blob/main/2023/1000xxx/GSD-2023-1000399.json"