CVE-2023-53045

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, related to the usb: gadget: u audio component. The issue occurs when userspace can block the driver unbind, causing a deadlock during reboot. This happens because the call to unbind may wait indefinitely for all resources to be released, which is dependent on the refcount falling to zero. Userspace can keep the refcount incremented by not closing the relevant file descriptor. The problem can be observed by opening the card with arecord and then stopping the process through the shell before unbinding.

Recommendations To fix the problem, use snd card free when closed() instead of snd card free(), which will disconnect the card as desired but defer the task of freeing the resources to the core once userspace closes its file descriptor. At the moment, there is no information about a newer version that contains a fix for this vulnerability.