CVE-2023-53387

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the UFS error handling flow within the Linux kernel. Specifically, if a device management command (NOP OUT) times out during link recovery and clearing the doorbell fails, the ufshcd wait for dev cmd() function may return without properly resetting the complete structure. Subsequently, if the command is completed by the device, calling complete() within ufshcd transfer req compl() can lead to a crash.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.