CVE-2023-53665

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc2-00121-g01e55c376936 #562

Description The Linux kernel contained a flaw in the md (multiple device) subsystem where a use-after-free condition could occur. Specifically, the code would attempt to dereference a mddev structure after it had been exported via export rdev(). This could lead to a general protection fault. The issue was triggered by a test case involving repeated addition and removal of devices via sysfs. The vulnerable code path involves referencing mddev->kobject through rdev->kobject, and the lack of guarantee that mddev remains valid after the last rdev is freed. The test case mdadm/tests/23rdev-lifetime was used to reproduce the issue. The call trace includes md wakeup thread and mddev unlock functions.

Recommendations Update to Linux kernel version 6.5.0-rc2-00121-g01e55c376936 #562 or a later version to address this issue.