CVE-2023-53531

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel related to handling poll request timeouts within the null block layer. Specifically, a race condition between null timeout rq() and null poll() can lead to a kernel NULL pointer dereference and a resulting kernel panic. This issue was identified during io uring benchmark testing on /dev/nullb0. The root cause is an improper handling of requests state during the timeout process, potentially occurring when a request's next pointer is unexpectedly NULL. The fix involves setting the request state to MQ RQ COMPLETE under the protection of nq->poll lock to safely detect and handle this race condition. This patch addresses the kernel panic but does not resolve all underlying issues.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.