-

CVE-2023-54046

EPSS 0.04%
Veröffentlicht 24.12.2025 12:22:57
Zuletzt bearbeitet 29.12.2025 15:58:34
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

crypto: essiv - Handle EBUSY correctly

As it is essiv only handles the special return value of EINPROGERSS,
which means that in all other cases it will free data related to the
request.

However, as the caller of essiv may specify MAY_BACKLOG, we also need
to expect EBUSY and treat it in the same way.  Otherwise backlogged
requests will trigger a use-after-free.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < c61e7d182ee3f3f5ecf18a2964e303d49c539b52

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

Version < 796e02cca30a67322161f0745e5ce994bbe75605

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

Version < 840a1d3b77c1b062bd62b4733969a5b1efc274ce

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

Version < a006aa3eedb8bfd6fe317c3cfe9c86ffe76b2385

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

Version < 69c67d451fc19d88e54f7d97e8e7c093e08357e1

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

Version < b5a772adf45a32c68bef28e60621f12617161556

Version be1eb7f78aa8fbe34779c56c266ccd0364604e71

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.4

Status affected

Version < 5.4

Version 0

Status unaffected

Version <= 5.4.*

Version 5.4.235

Status unaffected

Version <= 5.10.*

Version 5.10.173

Status unaffected

Version <= 5.15.*

Version 5.15.99

Status unaffected

Version <= 6.1.*

Version 6.1.16

Status unaffected

Version <= 6.2.*

Version 6.2.3

Status unaffected

Version <= *

Version 6.3

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.1

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/c61e7d182ee3f3f5ecf18a2964e303d49c539b52

https://git.kernel.org/stable/c/796e02cca30a67322161f0745e5ce994bbe75605

https://git.kernel.org/stable/c/840a1d3b77c1b062bd62b4733969a5b1efc274ce

https://git.kernel.org/stable/c/a006aa3eedb8bfd6fe317c3cfe9c86ffe76b2385

https://git.kernel.org/stable/c/69c67d451fc19d88e54f7d97e8e7c093e08357e1

https://git.kernel.org/stable/c/b5a772adf45a32c68bef28e60621f12617161556

https://nvd.nist.gov/vuln/detail/CVE-2023-54046

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54046

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54046

EUVD