CVE-2023-54326

Summary

In the Linux kernel, the following vulnerability has been resolved:

misc: pci_endpoint_test: Free IRQs before removing the device

In pci_endpoint_test_remove(), freeing the IRQs after removing the device creates a small race window for IRQs to be received with the test device memory already released, causing the IRQ handler to access invalid memory, resulting in an oops.

Free the device IRQs before removing the device to avoid this issue.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe03327122e2c8e6ae4565ef5b3d3cbe4364546a1 < fb7f8bdb886f2ebf35ee5edaf2bf5f02b063ddb7affected
LinuxLinuxe03327122e2c8e6ae4565ef5b3d3cbe4364546a1 < dd2210379205fcd23a9d8869b0cef90e3770577caffected
LinuxLinuxe03327122e2c8e6ae4565ef5b3d3cbe4364546a1 < cdf9a7e2cdc7a5464e3cc6d0b715ba2b1d215521affected
LinuxLinuxe03327122e2c8e6ae4565ef5b3d3cbe4364546a1 < 14bdee38e96c7d37ca15e7bea50411eee25fe315affected
LinuxLinuxe03327122e2c8e6ae4565ef5b3d3cbe4364546a1 < c2dba13bc0c62b79a3cbe4bfe5faa32231bf9b55affected
LinuxLinuxe03327122e2c8e6ae4565ef5b3d3cbe4364546a1 < 38d12bcf4e2ce3d285eb29644a79a54f42040fabaffected
LinuxLinuxe03327122e2c8e6ae4565ef5b3d3cbe4364546a1 < f61b7634a3249d12b9daa36ffbdb9965b6f24c6caffected
LinuxLinux4.19affected
LinuxLinux0 < 4.19unaffected
LinuxLinux4.19.291 <= 4.19.*unaffected
LinuxLinux5.4.251 <= 5.4.*unaffected
LinuxLinux5.10.188 <= 5.10.*unaffected
LinuxLinux5.15.121 <= 5.15.*unaffected
LinuxLinux6.1.40 <= 6.1.*unaffected
LinuxLinux6.4.5 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

References