CVE-2023-37454 Information

Description

An issue was discovered in the Linux kernel through 6.4.2. A crafted UDF filesystem image causes a use-after-free write operation in the udf_put_super and udf_close_lvid functions in fs/udf/super.c.

Reference

https://syzkaller.appspot.com/bug?extid=61564e5023b7229ec85d https://syzkaller.appspot.com/bug?extid=26873a72980f8fa8bc55 https://lore.kernel.org/all/00000000000056e02f05dfb6e11a@google.com/T/ https://syzkaller.appspot.com/bug?extid=60864ed35b1073540d57