{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2023-54272","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-12-30T12:06:44.522Z","datePublished":"2025-12-30T12:16:02.335Z","dateUpdated":"2026-05-11T19:58:46.004Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T19:58:46.004Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nfs/ntfs3: Fix a possible null-pointer dereference in ni_clear()\n\nIn a previous commit c1006bd13146, ni->mi.mrec in ni_write_inode()\ncould be NULL, and thus a NULL check is added for this variable.\n\nHowever, in the same call stack, ni->mi.mrec can be also dereferenced\nin ni_clear():\n\nntfs_evict_inode(inode)\n  ni_write_inode(inode, ...)\n    ni = ntfs_i(inode);\n    is_rec_inuse(ni->mi.mrec) -> Add a NULL check by previous commit\n  ni_clear(ntfs_i(inode))\n    is_rec_inuse(ni->mi.mrec) -> No check\n\nThus, a possible null-pointer dereference may exist in ni_clear().\nTo fix it, a NULL check is added in this function."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/ntfs3/frecord.c"],"versions":[{"version":"4342306f0f0d5ff4315a204d315c1b51b914fca5","lessThan":"20f9bfc664d6a478f9a5bbc0c380f80f7a1a06c6","status":"affected","versionType":"git"},{"version":"4342306f0f0d5ff4315a204d315c1b51b914fca5","lessThan":"39c6312009574ca73865354133ca222e7753a71b","status":"affected","versionType":"git"},{"version":"4342306f0f0d5ff4315a204d315c1b51b914fca5","lessThan":"e7675f85a92233136c630000a0b7cf97826705da","status":"affected","versionType":"git"},{"version":"4342306f0f0d5ff4315a204d315c1b51b914fca5","lessThan":"ec275bf9693d19cc0fdce8436f4c425ced86f6e7","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["fs/ntfs3/frecord.c"],"versions":[{"version":"5.15","status":"affected"},{"version":"0","lessThan":"5.15","status":"unaffected","versionType":"semver"},{"version":"5.15.113","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.81","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.3.4","lessThanOrEqual":"6.3.*","status":"unaffected","versionType":"semver"},{"version":"6.4","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.15","versionEndExcluding":"5.15.113"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.15","versionEndExcluding":"6.1.81"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.15","versionEndExcluding":"6.3.4"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.15","versionEndExcluding":"6.4"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/20f9bfc664d6a478f9a5bbc0c380f80f7a1a06c6"},{"url":"https://git.kernel.org/stable/c/39c6312009574ca73865354133ca222e7753a71b"},{"url":"https://git.kernel.org/stable/c/e7675f85a92233136c630000a0b7cf97826705da"},{"url":"https://git.kernel.org/stable/c/ec275bf9693d19cc0fdce8436f4c425ced86f6e7"}],"title":"fs/ntfs3: Fix a possible null-pointer dereference in ni_clear()","x_generator":{"engine":"bippy-1.2.0"}}}}