CVE-2023-53292
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
blk-mq: fix NULL dereference on q->elevator in blk_mq_elv_switch_none
After grabbing q->sysfs_lock, q->elevator may become NULL because of elevator switch.
Fix the NULL dereference on q->elevator by checking it with lock.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | 5fd7a84a09e640016fe106dd3e992f5210e23dc7 < 988ddb77218d3975dd13dee7bb0e1fae098a9fdb | affected |
| Linux | Linux | 5fd7a84a09e640016fe106dd3e992f5210e23dc7 < 3e977386521b71471e66ec2ba82efdfcc456adf2 | affected |
| Linux | Linux | 5fd7a84a09e640016fe106dd3e992f5210e23dc7 < 245165658e1c9f95c0fecfe02b9b1ebd30a1198a | affected |
| Linux | Linux | 5.19 | affected |
| Linux | Linux | 0 < 5.19 | unaffected |
| Linux | Linux | 6.1.175 <= 6.1.* | unaffected |
| Linux | Linux | 6.4.7 <= 6.4.* | unaffected |
| Linux | Linux | 6.5 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/988ddb77218d3975dd13dee7bb0e1fae098a9fdb
- https://git.kernel.org/stable/c/3e977386521b71471e66ec2ba82efdfcc456adf2
- https://git.kernel.org/stable/c/245165658e1c9f95c0fecfe02b9b1ebd30a1198a
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.