CVE-2023-53256

Name of the Vulnerable Software and Affected Versions Linux Kernel (affected versions not specified)

Description The Linux kernel contains a flaw in the arm ffa firmware where the device naming scheme for logical partitions fails to uniquely identify multiple services within a physical partition. The current implementation uses only the VM ID in the device name, while both VM ID and UUID are maintained in the partition information. This results in duplicate filenames in the sysfs directory, preventing the registration of multiple logical partitions or services. The kernel logs an error message indicating a naming conflict, specifically referencing /devices/arm-ffa-8001. The fix involves allocating a unique ID using ida alloc() and appending it to "arm-ffa" to create a unique device name, storing the ID value in ffa dev for later release.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.