CVE-2023-53662 PUBLISHED

ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup}

Assigner: Linux
Reserved: 07.10.2025 Published: 07.10.2025 Updated: 07.10.2025

In the Linux kernel, the following vulnerability has been resolved:

ext4: fix memory leaks in ext4_fname_{setup_filename,prepare_lookup}

If the filename casefolding fails, we'll be leaking memory from the fscrypt_name struct, namely from the 'crypto_buf.name' member.

Make sure we free it in the error path on both ext4_fname_setup_filename() and ext4_fname_prepare_lookup() functions.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 1ae98e295fa2577fb5e492200c58d10230e00e99 to 1fb3f1bbfdb511034b0360dbeb0f6a8424ed2a5c (excl.)
  • affected from 1ae98e295fa2577fb5e492200c58d10230e00e99 to 36daf050be3f6f067631dc52054de2d3b7cc849f (excl.)
  • affected from 1ae98e295fa2577fb5e492200c58d10230e00e99 to 7ca4b085f430f3774c3838b3da569ceccd6a0177 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 5.13 is affected
  • unaffected from 0 to 5.13 (excl.)
  • unaffected from 6.1.54 to 6.1.* (incl.)
  • unaffected from 6.5.4 to 6.5.* (incl.)
  • unaffected from 6.6 to * (incl.)

References