CVE-2023-53121

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved. The issue arises when tcp make synack() is called from process context, potentially leading to the use of this cpu add() in preemptible code. This can cause a bug when tcp rtx synack() calls tcp make synack(), which touches per-CPU variables with preemption enabled. The bug results in a call trace that includes functions such as tcp v6 send synack(), tcp rtx synack(), and tcp check req(). To avoid this issue, it is recommended to use TCP INC STATS() instead of TCP INC STATS(), as the former is safe to be called from context switch.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.