CVE-2023-53848

EPSS 0.02%
Veröffentlicht 09.12.2025 01:30:11
Zuletzt bearbeitet 09.12.2025 18:37:13
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

md/raid5-cache: fix a deadlock in r5l_exit_log()

Commit b13015af94cf ("md/raid5-cache: Clear conf->log after finishing
work") introduce a new problem:

// caller hold reconfig_mutex
r5l_exit_log
 flush_work(&log->disable_writeback_work)
			r5c_disable_writeback_async
			 wait_event
			  /*
			   * conf->log is not NULL, and mddev_trylock()
			   * will fail, wait_event() can never pass.
			   */
 conf->log = NULL

Fix this problem by setting 'config->log' to NULL before wake_up() as it
used to be, so that wait_event() from r5c_disable_writeback_async() can
exist. In the meantime, move forward md_unregister_thread() so that
null-ptr-deref this commit fixed can still be fixed.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < ac9e103f282a7854f3274ef5ff0742fbbe8d7d6b

Version b13015af94cf405f73ff64ce0797269554020c37

Status affected

Version < 71cf23271f015a57038bdc4669952096f9fe5500

Version b13015af94cf405f73ff64ce0797269554020c37

Status affected

Version < c406984738215dc20ac2dc63e49d70f20797730e

Version b13015af94cf405f73ff64ce0797269554020c37

Status affected

Version < a705b11b358dee677aad80630e7608b2d5f56691

Version b13015af94cf405f73ff64ce0797269554020c37

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.0

Status affected

Version < 6.0

Version 0

Status unaffected

Version <= 6.1.*

Version 6.1.53

Status unaffected

Version <= 6.4.*

Version 6.4.16

Status unaffected

Version <= 6.5.*

Version 6.5.3

Status unaffected

Version <= *

Version 6.6

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.036

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/ac9e103f282a7854f3274ef5ff0742fbbe8d7d6b

https://git.kernel.org/stable/c/71cf23271f015a57038bdc4669952096f9fe5500

https://git.kernel.org/stable/c/c406984738215dc20ac2dc63e49d70f20797730e

https://git.kernel.org/stable/c/a705b11b358dee677aad80630e7608b2d5f56691

https://nvd.nist.gov/vuln/detail/CVE-2023-53848

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53848

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53848

EUVD