CVE-2023-54209

EPSS 0.03%
Veröffentlicht 30.12.2025 12:11:08
Zuletzt bearbeitet 31.12.2025 20:43:05
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

block: fix blktrace debugfs entries leakage

Commit 99d055b4fd4b ("block: remove per-disk debugfs files in
blk_unregister_queue") moves blk_trace_shutdown() from
blk_release_queue() to blk_unregister_queue(), this is safe if blktrace
is created through sysfs, however, there is a regression in corner
case.

blktrace can still be enabled after del_gendisk() through ioctl if
the disk is opened before del_gendisk(), and if blktrace is not shutdown
through ioctl before closing the disk, debugfs entries will be leaked.

Fix this problem by shutdown blktrace in disk_release(), this is safe
because blk_trace_remove() is reentrant.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < aa07e56c6a9c7558165690d14eed4fe8babf34fb

Version 99d055b4fd4bbb309c6cdb51a0d420669f777944

Status affected

Version < 7149e57cf01184fba175589f8fbe9fbf33be02e1

Version 99d055b4fd4bbb309c6cdb51a0d420669f777944

Status affected

Version < 942e81650b81b4ca62f1d8c61de455c9e7c7e6ca

Version 99d055b4fd4bbb309c6cdb51a0d420669f777944

Status affected

Version < dd7de3704af9989b780693d51eaea49a665bd9c2

Version 99d055b4fd4bbb309c6cdb51a0d420669f777944

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.19

Status affected

Version < 5.19

Version 0

Status unaffected

Version <= 6.1.*

Version 6.1.39

Status unaffected

Version <= 6.3.*

Version 6.3.13

Status unaffected

Version <= 6.4.*

Version 6.4.4

Status unaffected

Version <= *

Version 6.5

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.063

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/aa07e56c6a9c7558165690d14eed4fe8babf34fb

https://git.kernel.org/stable/c/7149e57cf01184fba175589f8fbe9fbf33be02e1

https://git.kernel.org/stable/c/942e81650b81b4ca62f1d8c61de455c9e7c7e6ca

https://git.kernel.org/stable/c/dd7de3704af9989b780693d51eaea49a665bd9c2

https://nvd.nist.gov/vuln/detail/CVE-2023-54209

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54209

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54209

EUVD