CVE-2023-54046

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the crypto/essiv module. The essiv module incorrectly handles the EBUSY return value, potentially leading to a use-after-free condition when backlogged requests are processed. Specifically, the module only handles the EINPROGERSS return value, failing to properly free data associated with requests when EBUSY is returned by the caller, especially when the MAY BACKLOG flag is specified.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.