CVE-2023-53629

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc4+ #2828

Description The Linux kernel contains a use-after-free issue within the Distributed Lock Manager (DLM) component, specifically in the handling of mid-communication commits. This flaw occurs while processing DLM messages in a softirq context. The issue was identified through Kernel Address Sanitizer (KASAN) warnings during testing. The vulnerability is related to memory management within the DLM, potentially leading to system instability or other undefined behavior. The dlm midcomms commit mhandle function is implicated in the issue.

Recommendations Update to a newer version of the Linux kernel that contains the fix for this vulnerability.