CVE-2023-53111

HIGH EPSS 5.9%
Published May 2, 20251y ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published May 2, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: loop: Fix use-after-free issues do_req_filebacked() calls blk_mq_complete_request() synchronously or asynchronously when using asynchronous I/O unless memory allocation fails. Hence, modify loop_handle_cmd() such that it does not dereference 'cmd' nor 'rq' after do_req_filebacked() finished unless we are sure that the request has not yet been completed. This patch fixes the following kernel crash: Unable to handle kernel NULL pointer dereference at virtual address 0000000000000054 Call trace: css_put.42938+0x1c/0x1ac loop_process_work+0xc8c/0xfd4 loop_rootcg_workfn+0x24/0x34 process_one_work+0x244/0x558 worker_thread+0x400/0x8fc kthread+0x16c/0x1e0 ret_from_fork+0x10/0x20

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
5.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 5

VendorProductVersionRange
linuxlinux_kernel*≥4.4  –  <5.15.104
linuxlinux_kernel*≥5.16  –  <6.1.21
linuxlinux_kernel*≥6.2  –  <6.2.8
linuxlinux_kernel6.3any
linuxlinux_kernel6.3any

References 4

  • git.kernel.org https://git.kernel.org/stable/c/407badf73ec9fb0d5744bf2ca1745c1818aa222f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6917395c4667cfb607ed8bf1826205a59414657c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9b0cb770f5d7b1ff40bea7ca385438ee94570eec
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e3fda704903f6d1fc351412f1bc6620333959ada
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/407badf73ec9fb0d5744bf2ca1745c1818aa222f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/6917395c4667cfb607ed8bf1826205a59414657c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9b0cb770f5d7b1ff40bea7ca385438ee94570eec
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e3fda704903f6d1fc351412f1bc6620333959ada
    Patch