Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix handling of lrbp->cmd ufshcd_queuecommand() may be called two times in a row for a SCSI command before it is completed. Hence make the following changes: - In the functions that submit a command, do not check the old value of lrbp->cmd nor clear lrbp->cmd in error paths. - In ufshcd_release_scsi_cmd(), do not clear lrbp->cmd. See also scsi_send_eh_cmnd(). This commit prevents that the following appears if a command times out: WARNING: at drivers/ufs/core/ufshcd.c:2965 ufshcd_queuecommand+0x6f8/0x9a8 Call trace: ufshcd_queuecommand+0x6f8/0x9a8 scsi_send_eh_cmnd+0x2c0/0x960 scsi_eh_test_devices+0x100/0x314 scsi_eh_ready_devs+0xd90/0x114c scsi_error_handler+0x2b4/0xb70 kthread+0x16c/0x1e0
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 3.12, < 6.3.13 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/49234a401e161a2f2698f4612ab792c49b3cad1bPatch
- https://git.kernel.org/stable/c/549e91a9bbaa0ee480f59357868421a61d369770Patch
- https://git.kernel.org/stable/c/b6d76d63c6d21d5d26c301a46853a2aee72397d5Patch
- https://git.kernel.org/stable/c/f3ee24af62681b942bbd799ac77b90a6d7e1fdb1Patch
FAQ
What is CVE-2023-53510?
CVE-2023-53510 is a vulnerability with a CVSS score of 7.8 (HIGH). In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix handling of lrbp->cmd ufshcd_queuecommand() may be called two times in a row for a SCSI command before it is ...
How severe is CVE-2023-53510?
CVE-2023-53510 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-53510?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.