CVE-2023-53475

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's USB subsystem, specifically within the xhci-tegra driver. The issue arises when setting a dual-role port to Host mode, leading to a potential sleep call from an atomic context. This occurs because the tegra xusb padctl get usb3 companion function, called through tegra xusb find port, utilizes kasprintf, which can sleep, while being executed within an atomic context. The call to tegra xusb padctl get usb3 companion has been moved to the tegra xhci id work function to resolve this. The kasprintf function allocates memory for a string, and sleeping within an atomic context can lead to system instability or crashes.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.