CVE-2023-53712

EPSS 0.03%
Veröffentlicht 22.10.2025 13:23:47
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

ARM: 9317/1: kexec: Make smp stop calls asynchronous

In the Linux kernel, the following vulnerability has been resolved:

ARM: 9317/1: kexec: Make smp stop calls asynchronous

If a panic is triggered by a hrtimer interrupt all online cpus will be
notified and set offline. But as highlighted by commit 19dbdcb8039c
("smp: Warn on function calls from softirq context") this call should
not be made synchronous with disabled interrupts:

 softdog: Initiating panic
 Kernel panic - not syncing: Software Watchdog Timer expired
 WARNING: CPU: 1 PID: 0 at kernel/smp.c:753 smp_call_function_many_cond
   unwind_backtrace:
     show_stack
     dump_stack_lvl
     __warn
     warn_slowpath_fmt
     smp_call_function_many_cond
     smp_call_function
     crash_smp_send_stop.part.0
     machine_crash_shutdown
     __crash_kexec
     panic
     softdog_fire
     __hrtimer_run_queues
     hrtimer_interrupt

Make the smp call for machine_crash_nonpanic_core() asynchronous.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 7

CNA 2 VulnDex Vulnerability Enrichment 11

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version b23065313297e750edd57ab6edfd36224826724e

Version < 46870eea5496ff277e86187a49ac5a667cfe60c4

Status affected

Version b23065313297e750edd57ab6edfd36224826724e

Version < ee378f45a70d09b51373ba495d30d99ef12219c1

Status affected

Version b23065313297e750edd57ab6edfd36224826724e

Version < 5590ba4560eefbd19a4ed07c7e7c8e4c51ffc628

Status affected

Version b23065313297e750edd57ab6edfd36224826724e

Version < 8922ba71c969d2a0c01a94372a71477d879470de

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 2.6.38

Status affected

Version 0

Version < 2.6.38

Status unaffected

Version <= 5.15.*

Version 5.15.133

Status unaffected

Version <= 6.1.*

Version 6.1.55

Status unaffected

Version <= 6.5.*

Version 6.5.5

Status unaffected

Version <= *

Version 6.6

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.093

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/46870eea5496ff277e86187a49ac5a667cfe60c4

https://git.kernel.org/stable/c/ee378f45a70d09b51373ba495d30d99ef12219c1

https://git.kernel.org/stable/c/5590ba4560eefbd19a4ed07c7e7c8e4c51ffc628

https://git.kernel.org/stable/c/8922ba71c969d2a0c01a94372a71477d879470de

https://nvd.nist.gov/vuln/detail/CVE-2023-53712

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53712

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53712

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-53712