CVE-2023-54292

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a data race condition within the RDMA/irdma subsystem, specifically related to the completion queue pair (CQP) request done memory location. Kernel Concurrency Sanitizer (KCSAN) detected this race while accessing the cqp request->request done memory location locklessly in irdma handle cqp op while it was being updated in irdma cqp ce handler. The issue is addressed by annotating lockless intent with READ ONCE/WRITE ONCE to prevent compiler optimizations that could trigger the data race. The call stack indicates the issue occurs during device unregistration and module unloading. The functions involved include irdma cqp ce handler, irdma wait event, irdma handle cqp op, and irdma cqp cq destroy cmd.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-54292

RHSA-2024:2394

SUSE-SU-2026:0263-1

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0617-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Linux Kernel

Red Hat

CVE-2023-54292

Related Identifiers

Affected Products

References · 2180