CVE-2023-53609

Summary

In the Linux kernel, the following vulnerability has been resolved:

scsi: Revert "scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed"

The "atomic_inc(&cmd->device->iorequest_cnt)" in scsi_queue_rq() would cause kernel panic because cmd->device may be freed after returning from scsi_dispatch_cmd().

This reverts commit cfee29ffb45b1c9798011b19d454637d1b0fe87d.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxcfee29ffb45b1c9798011b19d454637d1b0fe87d < 35fe6fa57b994e7da222893adf0bb748d6055e73affected
LinuxLinuxcfee29ffb45b1c9798011b19d454637d1b0fe87d < 6ca9818d1624e136a76ae8faedb6b6c95ca66903affected
LinuxLinux6.2affected
LinuxLinux0 < 6.2unaffected
LinuxLinux6.3.4 <= 6.3.*unaffected
LinuxLinux6.4 <= *unaffected

Weaknesses

References