5.5

CVE-2023-53519

EPSS 0.02%
Veröffentlicht 01.10.2025 12:15:56
Zuletzt bearbeitet 26.01.2026 20:06:37
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

media: v4l2-mem2mem: add lock to protect parameter num_rdy

Getting below error when using KCSAN to check the driver. Adding lock to
protect parameter num_rdy when getting the value with function:
v4l2_m2m_num_src_bufs_ready/v4l2_m2m_num_dst_bufs_ready.

kworker/u16:3: [name:report&]BUG: KCSAN: data-race in v4l2_m2m_buf_queue
kworker/u16:3: [name:report&]

kworker/u16:3: [name:report&]read-write to 0xffffff8105f35b94 of 1 bytes by task 20865 on cpu 7:
kworker/u16:3:  v4l2_m2m_buf_queue+0xd8/0x10c

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 2.6.39 < 4.14.324

Linux ≫ Linux Kernel Version >= 4.15 < 4.19.293

Linux ≫ Linux Kernel Version >= 4.20 < 5.4.255

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.192

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.128

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.47

Linux ≫ Linux Kernel Version >= 6.2 < 6.4.12

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.035

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-667 Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

https://git.kernel.org/stable/c/1676748aa29099fc0abd71e0fb092e76e835f25c

Patch

https://git.kernel.org/stable/c/56b5c3e67b0f9af3f45cf393be048ee8d8a92694

Patch

https://git.kernel.org/stable/c/690dd4780b3f4d755e4e7883e8c3d1b5052f6bf2

Patch

https://git.kernel.org/stable/c/7fc7f87725805197388ba749a1801df33000fa50

Patch

https://git.kernel.org/stable/c/c71aa5f1cf961264690f2560503ea396b6e3c680

Patch

https://git.kernel.org/stable/c/e01ea1c4191ee08440b5f86db98dff695e9cedf9

Patch

https://git.kernel.org/stable/c/e52de26cb37459b16213438a2c82feb155dd3bbd

Patch

https://git.kernel.org/stable/c/ef009fe2010ea2a3a7045ecb72729cf366e0967b

Patch

https://nvd.nist.gov/vuln/detail/CVE-2023-53519

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53519

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53519

EUVD