CVE-2023-53481

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue exists in the Linux kernel related to wear-leveling within the UBI (Unsorted Block Image) subsystem. A flaw in the ubi wl put peb() function can lead to an infinite loop under specific conditions during wear-leveling operations. This occurs when a wear-leveling entry is removed from ubi->lookuptbl but the function does not handle this scenario correctly, resulting in a continuous retry loop. The process flow involves ubifs bgt, ubi bgt, ubifs leb unmap, ubi leb unmap, ubi eba unmap leb, ubi wl put peb, and wear leveling worker. The issue is triggered when ubi wl put peb() attempts to access a removed entry in ubi->lookuptbl, leading to the infinite loop. The ubifs bgt0 0 process can consume 100% CPU during this loop.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.