CVE-2023-53345

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A potential data race condition was identified within the rxrpc wait to be connected() function in the Linux kernel. The issue arises from accessing call->error within a loop without first verifying the call state, potentially leading to unexpected behavior. This condition triggered a Kernel Concurrency Sanitizer (KCSAN) report indicating a data race in rxrpc send data and rxrpc set call completion. The root cause involves a write operation to memory location 0xffff888159cf3c50 by one task and a read operation to the same location by another task, resulting in a data race.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.