CVE-2023-54006

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.4.0-rc5-01219-gfa0e21fa4443

Description The Linux kernel contained a data race condition related to the unix tot inflight variable within the af unix subsystem. Specifically, unix tot inflight was being modified under a spin lock (unix gc lock), while being read locklessly by the unix release sock() function. This condition was identified by the Kernel Concurrency Sanitizer (KCSAN) and addressed by using READ ONCE() for unix tot inflight. The issue was observed during operations involving unix inflight, unix release sock, unix attach fds, unix dgram sendmsg, sock sendmsg, and system calls like sendmsg. The data race occurred when writing to memory location 0xffffffff871852b8 and reading from the same location.

Recommendations Update to version 6.4.0-rc5-01219-gfa0e21fa4443 or a later version to resolve this issue.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-54006

RHSA-2024:2394

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Linux Kernel

CVE-2023-54006

Related Identifiers

Affected Products

References · 1462