CVE-2023-54000

EPSS 0.03%
Veröffentlicht 24.12.2025 10:55:36
Zuletzt bearbeitet 15.04.2026 00:35:42
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

net: hns3: fix deadlock issue when externel_lb and reset are executed together

In the Linux kernel, the following vulnerability has been resolved:

net: hns3: fix deadlock issue when externel_lb and reset are executed together

When externel_lb and reset are executed together, a deadlock may
occur:
[ 3147.217009] INFO: task kworker/u321:0:7 blocked for more than 120 seconds.
[ 3147.230483] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3147.238999] task:kworker/u321:0  state:D stack:    0 pid:    7 ppid:     2 flags:0x00000008
[ 3147.248045] Workqueue: hclge hclge_service_task [hclge]
[ 3147.253957] Call trace:
[ 3147.257093]  __switch_to+0x7c/0xbc
[ 3147.261183]  __schedule+0x338/0x6f0
[ 3147.265357]  schedule+0x50/0xe0
[ 3147.269185]  schedule_preempt_disabled+0x18/0x24
[ 3147.274488]  __mutex_lock.constprop.0+0x1d4/0x5dc
[ 3147.279880]  __mutex_lock_slowpath+0x1c/0x30
[ 3147.284839]  mutex_lock+0x50/0x60
[ 3147.288841]  rtnl_lock+0x20/0x2c
[ 3147.292759]  hclge_reset_prepare+0x68/0x90 [hclge]
[ 3147.298239]  hclge_reset_subtask+0x88/0xe0 [hclge]
[ 3147.303718]  hclge_reset_service_task+0x84/0x120 [hclge]
[ 3147.309718]  hclge_service_task+0x2c/0x70 [hclge]
[ 3147.315109]  process_one_work+0x1d0/0x490
[ 3147.319805]  worker_thread+0x158/0x3d0
[ 3147.324240]  kthread+0x108/0x13c
[ 3147.328154]  ret_from_fork+0x10/0x18

In externel_lb process, the hns3 driver call napi_disable()
first, then the reset happen, then the restore process of the
externel_lb will fail, and will not call napi_enable(). When
doing externel_lb again, napi_disable() will be double call,
cause a deadlock of rtnl_lock().

This patch use the HNS3_NIC_STATE_DOWN state to protect the
calling of napi_disable() and napi_enable() in externel_lb
process, just as the usage in ndo_stop() and ndo_start().

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 7

CNA 2 VulnDex Vulnerability Enrichment 5

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version 85fc1d802edf36123ae1bd0a13892bb3772c197f

Version < d9f609cb50ebab4aa6341112f406bf9d3928ac81

Status affected

Version 04b6ba143521f4485b7f2c36c655b262a79dae97

Version < 743f7c1762e098048ede8cdf8c89a118f8d12391

Status affected

Version 04b6ba143521f4485b7f2c36c655b262a79dae97

Version < ef2d6bf9695669d31ece9f2ef39dec84874a87c7

Status affected

Version 04b6ba143521f4485b7f2c36c655b262a79dae97

Version < ac6257a3ae5db5193b1f19c268e4f72d274ddb88

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.1

Status affected

Version 0

Version < 6.1

Status unaffected

Version <= 6.1.*

Version 6.1.46

Status unaffected

Version <= 6.4.*

Version 6.4.11

Status unaffected

Version <= *

Version 6.5

Status unaffected

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.099

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/d9f609cb50ebab4aa6341112f406bf9d3928ac81

https://git.kernel.org/stable/c/743f7c1762e098048ede8cdf8c89a118f8d12391

https://git.kernel.org/stable/c/ef2d6bf9695669d31ece9f2ef39dec84874a87c7

https://git.kernel.org/stable/c/ac6257a3ae5db5193b1f19c268e4f72d274ddb88

https://nvd.nist.gov/vuln/detail/CVE-2023-54000

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54000

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54000

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-54000