CVE-2023-53615

EPSS 0.02%
Veröffentlicht 04.10.2025 15:44:22
Zuletzt bearbeitet 05.02.2026 16:39:54
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

scsi: qla2xxx: Fix deletion race condition

System crash when using debug kernel due to link list corruption. The cause
of the link list corruption is due to session deletion was allowed to queue
up twice.  Here's the internal trace that show the same port was allowed to
double queue for deletion on different cpu.

20808683956 015 qla2xxx [0000:13:00.1]-e801:4: Scheduling sess ffff93ebf9306800 for deletion 50:06:0e:80:12:48:ff:50 fc4_type 1
20808683957 027 qla2xxx [0000:13:00.1]-e801:4: Scheduling sess ffff93ebf9306800 for deletion 50:06:0e:80:12:48:ff:50 fc4_type 1

Move the clearing/setting of deleted flag lock.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 4.11 < 5.4.258

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.195

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.132

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.54

Linux ≫ Linux Kernel Version >= 6.2 < 6.5.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.036

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.7	1	3.6	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

The product contains a concurrent code sequence that requires temporary, exclusive access to a shared resource, but a timing window exists in which the shared resource can be modified by another code sequence operating concurrently.

https://git.kernel.org/stable/c/a4628a5b98e4c6d905e1f7638242612d7db7d9c2

Patch

https://git.kernel.org/stable/c/4d7da12483e98c451a51bd294a3d3494f0aee5eb

Patch

https://git.kernel.org/stable/c/f1ea164be545629bf442c22f508ad9e7b94ac100

Patch

https://git.kernel.org/stable/c/cd06c45b326e44f0d21dc1b3fa23e71f46847e28

Patch

https://git.kernel.org/stable/c/b05017cb4ff75eea783583f3d400059507510ab1

Patch

https://git.kernel.org/stable/c/6dfe4344c168c6ca20fe7640649aacfcefcccb26

Patch

https://nvd.nist.gov/vuln/detail/CVE-2023-53615

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53615

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53615

EUVD