PT-2025-54055 · Linux · Linux Kernel
Published
2025-12-30
·
Updated
2026-01-28
·
CVE-2023-54226
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.3.0-rc7-02330-gca6270c12e20
Description
The Linux kernel contained data races around the
sk->sk shutdown variable within the AF UNIX socket family. Kernel Concurrency Sanitizer (KCSAN) identified that unix release sock() and unix shutdown() were updating this variable under unix state lock(), while unix poll() and unix dgram poll() were reading it without any locking. This condition could lead to inconsistencies and potential issues. The issue was addressed by annotating the reads and writes with READ ONCE() and WRITE ONCE() respectively. The data race was observed between unix poll() and unix release sock().Recommendations
Update to a version later than 6.3.0-rc7-02330-gca6270c12e20.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux Kernel