Login Sign Up

CVE-2023-53450

5.5 MEDIUM
Denial of Service

📋 TL;DR

This vulnerability in the Linux kernel's ext4 filesystem allows a malicious actor to trigger a kernel panic (denial of service) by manipulating the superblock's s_first_data_block value. It affects Linux systems using the ext4 filesystem. The impact is limited to denial of service rather than privilege escalation or data corruption.

💻 Affected Systems

Products:
  • Linux kernel
Versions: Specific kernel versions with the vulnerable ext4 code (check git commits for exact ranges)
Operating Systems: Linux distributions using affected kernel versions
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects systems using ext4 filesystem. Requires attacker to have ability to write to the filesystem superblock.

📦 What is this software?

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Kernel panic leading to system crash and denial of service, requiring physical or remote console access to reboot.

🟠

Likely Case

Local denial of service attack where an attacker with filesystem access can crash the system.

🟢

If Mitigated

Minimal impact if systems are patched - the BUG_ON is replaced with a warning that won't crash the kernel.

🌐 Internet-Facing: LOW - Requires local filesystem access, not remotely exploitable via network.
🏢 Internal Only: MEDIUM - Malicious local users or compromised accounts with filesystem access could crash systems.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Requires local access and ability to modify filesystem metadata. Not trivial but feasible for determined attackers.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Kernel versions containing commits 185062a21976fbc38f2efd296951b02c4500cf65 or later

Vendor Advisory: https://git.kernel.org/stable/c/185062a21976fbc38f2efd296951b02c4500cf65

Restart Required: Yes

Instructions:

1. Update Linux kernel to patched version from your distribution's repositories. 2. Reboot system to load new kernel.

🔧 Temporary Workarounds

Mount ext4 filesystems as read-only

linux

Prevents modification of superblock that triggers the vulnerability

mount -o remount,ro /dev/sdX /mountpoint

Use alternative filesystem

linux

Temporarily use ext3, xfs, or btrfs instead of ext4

🧯 If You Can't Patch

  • Restrict local user access to systems using ext4 filesystems
  • Implement strict filesystem permission controls and monitor for unusual superblock modifications

🔍 How to Verify

Check if Vulnerable:

Check kernel version and verify if ext4_mb_release_group_pa() contains BUG_ON instead of ext4_warning for block group calculation underflow

Check Version:

uname -r

Verify Fix Applied:

Verify kernel version is updated and check that the vulnerable function uses ext4_warning() instead of BUG_ON()

📡 Detection & Monitoring

Log Indicators:

  • Kernel panic messages related to ext4
  • ext4 filesystem warning messages in dmesg
  • System crash/reboot events

Network Indicators:

  • None - local vulnerability only

SIEM Query:

source="kernel" AND ("BUG: " OR "panic" OR "ext4" AND "warning")

📊 Metadata

CVE ID: CVE-2023-53450
CVSS v3 Score: 5.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-617
EPSS Score: 0.02% exploit probability (5.1th percentile)
Published: October 1, 2025
Last Updated: January 23, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-53450, you might also want to check these:

CVE-2023-37015 8.6

This vulnerability allows remote attackers to cause denial of service by sending malformed ASN.1 pac...

Same vulnerability type (CWE-617)
CVE-2023-37016 8.6

CVE-2023-37016 is a remotely triggerable assertion vulnerability in Open5GS MME that allows denial o...

Same vulnerability type (CWE-617)
CVE-2023-37017 8.6

Open5GS MME versions up to 2.6.4 contain a remotely triggerable assertion via malformed ASN.1 packet...

Same vulnerability type (CWE-617)