CVE-2023-53207 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: ublk: fail to recover device if queue setup is interrupted In ublk_ctrl_end_recovery(), if wait_for_completion_interruptible() is interrupted by signal, queues aren't setup successfully yet, so we have to fail UBLK_CMD_END_USER_RECOVERY, otherwise kernel oops can be triggered.

PUBLISHED Reserved 2025-09-15 | Published 2025-09-15 | Updated 2025-09-15 | Assigner Linux

Product status

Default status

unaffected

c732a852b419fa057b53657e2daaf9433940391c (git) before 84415f934ad4e96f3507fd09b831953d60fb04ec

affected

c732a852b419fa057b53657e2daaf9433940391c (git) before b3a1e243a74632f88b22e713f1c7256754017d58

affected

c732a852b419fa057b53657e2daaf9433940391c (git) before 0c0cbd4ebc375ceebc75c89df04b74f215fab23a

affected

Default status

affected

6.1

affected

Any version before 6.1

unaffected

6.1.43 (semver)

unaffected

6.4.8 (semver)

unaffected

6.5 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/84415f934ad4e96f3507fd09b831953d60fb04ec

git.kernel.org/...c/b3a1e243a74632f88b22e713f1c7256754017d58

git.kernel.org/...c/0c0cbd4ebc375ceebc75c89df04b74f215fab23a

cve.org (CVE-2023-53207)

nvd.nist.gov (CVE-2023-53207)

Download JSON

help @ threatint.eu