CVE-2023-53292

Summary

In the Linux kernel, the following vulnerability has been resolved:

blk-mq: fix NULL dereference on q->elevator in blk_mq_elv_switch_none

After grabbing q->sysfs_lock, q->elevator may become NULL because of elevator switch.

Fix the NULL dereference on q->elevator by checking it with lock.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux5fd7a84a09e640016fe106dd3e992f5210e23dc7 < 988ddb77218d3975dd13dee7bb0e1fae098a9fdbaffected
LinuxLinux5fd7a84a09e640016fe106dd3e992f5210e23dc7 < 3e977386521b71471e66ec2ba82efdfcc456adf2affected
LinuxLinux5fd7a84a09e640016fe106dd3e992f5210e23dc7 < 245165658e1c9f95c0fecfe02b9b1ebd30a1198aaffected
LinuxLinux5.19affected
LinuxLinux0 < 5.19unaffected
LinuxLinux6.1.175 <= 6.1.*unaffected
LinuxLinux6.4.7 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References