CVE-2023-53013

Summary

In the Linux kernel, the following vulnerability has been resolved:

ptdma: pt_core_execute_cmd() should use spinlock

The interrupt handler (pt_core_irq_handler()) of the ptdma driver can be called from interrupt context. The code flow in this function can lead down to pt_core_execute_cmd() which will attempt to grab a mutex, which is not appropriate in interrupt context and ultimately leads to a kernel panic. The fix here changes this mutex to a spinlock, which has been verified to resolve the issue.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxfa5d823b16a9442d609617abeec31da8b6afa224 < ed0d8f731e0bf1bb12a7a37698ac613db20e2794affected
LinuxLinuxfa5d823b16a9442d609617abeec31da8b6afa224 < 13ba563c2c8055ba8a637c9f70bb833b43cb4207affected
LinuxLinuxfa5d823b16a9442d609617abeec31da8b6afa224 < 95e5fda3b5f9ed8239b145da3fa01e641cf5d53caffected
LinuxLinux5.15affected
LinuxLinux0 < 5.15unaffected
LinuxLinux5.15.91 <= 5.15.*unaffected
LinuxLinux6.1.9 <= 6.1.*unaffected
LinuxLinux6.2 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References