CVE-2023-52704

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability has been resolved in the Linux kernel related to the call usermodehelper exec() function. The issue was introduced by a commit that rewrote the core freezer logic, which broke the function for the KILLABLE case. Specifically, it was missed that the second, unconditional wait for completion() was not optional and ensures the on-stack completion is unused before going out-of-scope.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.