CVE-2023-52810 [High] | Memory Corruption in Linux Kernel

In the Linux kernel, the following vulnerability has been resolved: fs/jfs: Add check for negative db_l2nbperpage l2nbperpage is log2(number of blks per page), and the minimum legal value should be 0, not negative. In the case of l2nbperpage being negative, an error will occur when subsequently used as shift exponent. Syzbot reported this bug: UBSAN: shift-out-of-bounds in fs/jfs/jfs_dmap.c:799:12 shift exponent -16777216 is negative

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-11-21	0.07%	0.02%	-0.06%
2	2025-11-18	0.01%	0.07%	+0.06%
3	2025-07-22	—	0.01%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2025-11-21

0.07%

0.02%

-0.06%

2025-11-18

0.01%

0.07%

+0.06%

2025-07-22

—

0.01%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
8.4	3.1	HIGH	`CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H` Click to expand Attack vector (AV:L) They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by. Attack complexity (AC:L) Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup. Privileges required (PR:N) No account or special rights needed—anonymous or random user is enough. User interaction (UI:N) Nobody has to click “OK” or open a trap file; it can work without a victim helping. Scope (S:U) Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems. Confidentiality (C:H) Serious risk that confidential data gets exposed in a big way. Integrity (I:H) They could widely tamper with or forge data—trust in the data is badly hurt. Availability (A:H) Could take the service down hard or make it unusable for people who depend on it.	2.5	5.9	134c704f-9b21-4f2e-91b3-4a467353bcc0

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

8.4

3.1

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Click to expand

Attack vector (AV:L): They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by.
Attack complexity (AC:L): Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:N): No account or special rights needed—anonymous or random user is enough.
User interaction (UI:N): Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U): Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:H): Serious risk that confidential data gets exposed in a big way.
Integrity (I:H): They could widely tamper with or forge data—trust in the data is badly hurt.
Availability (A:H): Could take the service down hard or make it unusable for people who depend on it.

2.5

5.9

134c704f-9b21-4f2e-91b3-4a467353bcc0

OS Trackers for CVE-2023-52810

vendor	priority	summary	link
`debian`	not yet assigned	CVE-2023-52810 not yet assigned priority: Debian including 1 source packages (linux), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.	https://security-tracker.debian.org/tracker/CVE-2023-52810
`redhat`	medium	—	https://access.redhat.com/security/cve/CVE-2023-52810
`suse`	medium	—	https://www.suse.com/security/cve/CVE-2023-52810/
`ubuntu`	medium	CVE-2023-52810 medium priority: Ubuntu including 160 source packages (linux, linux-allwinner-5.19, …), 1686 status rows across 11 suites (bionic, focal, jammy, mantic, noble, oracular, plucky, questing, trusty, upstream, xenial): DNE 1267, released 161, ignored 148, not-affected 88, needed 20, needs-triage 2.	https://ubuntu.com/security/CVE-2023-52810

Affected software / configurations for CVE-2023-52810

Vendor	Product	Version	Raw CPE
linux	linux_kernel	< 4.14.331	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 4.15, < 4.19.300	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 4.20, < 5.4.262	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 5.5, < 5.10.202	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 5.11, < 5.15.140	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 5.16, < 6.1.64	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 6.2, < 6.5.13	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	>= 6.6, < 6.6.3	cpe:2.3:o:linux:linux_kernel::::::::

References for CVE-2023-52810

URL	Tags
https://git.kernel.org/stable/c/0cb567e727339a192f9fd0db00781d73a91d15a6	Patch
https://git.kernel.org/stable/c/1a7c53fdea1d189087544d9a606d249e93c4934b	Patch
https://git.kernel.org/stable/c/491085258185ffc4fb91555b0dba895fe7656a45	Patch
https://git.kernel.org/stable/c/524b4f203afcf87accfe387e846f33f916f0c907	Patch
https://git.kernel.org/stable/c/525b861a008143048535011f3816d407940f4bfa	Patch
https://git.kernel.org/stable/c/5f148b16972e5f4592629b244d5109b15135f53f	Patch
https://git.kernel.org/stable/c/8f2964df6bfce9d92d81ca552010b8677af8d9dc	Patch
https://git.kernel.org/stable/c/a81a56b4cbe3142cc99f6b98e8f9b3a631c768e1	Patch
https://git.kernel.org/stable/c/cc61fcf7d1c99f148fe8ddfb5c6ed0bb75861f01	Patch

URL

CVE-2023-52810 | fs/jfs: Add check for negative db_l2nbperpage

Exploit prediction scoring system (EPSS) score for CVE-2023-52810

Common vulnerability scoring system (CVSS) metrics for CVE-2023-52810

Weakness enumeration for CVE-2023-52810

OS Trackers for CVE-2023-52810

Affected software / configurations for CVE-2023-52810

References for CVE-2023-52810