CVE-2023-54235

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A race condition exists in the PCI/DOE subsystem related to the destroy work on stack() function. This issue occurs when destroy work on stack() is called after signaling completion in the calling thread, leading to a race between the destruction of the work struct and the task’s work struct going out of scope in pci doe(). The issue was observed as a debug object splat during testing, specifically involving a workqueue named 'pci 0000:36:00.0 DOE'. The root cause is that the work struct is accessed after being destroyed. The fix involves signaling work completion after destroying the work struct, as the signal task complete() function is the final operation performed by the work item and the workqueue code avoids accessing the work struct afterward.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.