{"id":"CVE-2023-54285","summary":"iomap: Fix possible overflow condition in iomap_write_delalloc_scan","details":"In the Linux kernel, the following vulnerability has been resolved:\n\niomap: Fix possible overflow condition in iomap_write_delalloc_scan\n\nfolio_next_index() returns an unsigned long value which left shifted\nby PAGE_SHIFT could possibly cause an overflow on 32-bit system. Instead\nuse folio_pos(folio) + folio_size(folio), which does this correctly.","modified":"2026-04-11T12:46:52.443912Z","published":"2025-12-30T12:23:25.770Z","related":["SUSE-SU-2026:0278-1","SUSE-SU-2026:0281-1","SUSE-SU-2026:0293-1","SUSE-SU-2026:0315-1","SUSE-SU-2026:20477-1","SUSE-SU-2026:20498-1","SUSE-SU-2026:20845-1","SUSE-SU-2026:20876-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54285.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/0c6cf409093f307ee05114f834516730c0da5b21"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5c281b0c5d18c8eeb1cfd5023f4adb153e6d1240"},{"type":"WEB","url":"https://git.kernel.org/stable/c/eee2d2e6ea5550118170dbd5bb1316ceb38455fb"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54285.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-54285"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"38be53c3fd7f4f4bd5de319a323d72f9f6beb16d"},{"fixed":"0c6cf409093f307ee05114f834516730c0da5b21"}]},{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"f43dc4dc3eff028b5ddddd99f3a66c5a6bdd4e78"},{"fixed":"5c281b0c5d18c8eeb1cfd5023f4adb153e6d1240"},{"fixed":"eee2d2e6ea5550118170dbd5bb1316ceb38455fb"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54285.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"6.1.162"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.5.5"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54285.json"}}],"schema_version":"1.7.5"}