CVE-2023-53111
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-53111
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53111.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-53111
- Downstream
- Related
- Published
- 2025-05-02T15:55:51Z
- Modified
- 2025-10-21T16:09:49.722560Z
- Summary
- loop: Fix use-after-free issues
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
loop: Fix use-after-free issues
doreqfilebacked() calls blkmqcompleterequest() synchronously or asynchronously when using asynchronous I/O unless memory allocation fails. Hence, modify loophandlecmd() such that it does not dereference 'cmd' nor 'rq' after doreq_filebacked() finished unless we are sure that the request has not yet been completed. This patch fixes the following kernel crash:
Unable to handle kernel NULL pointer dereference at virtual address 0000000000000054 Call trace: cssput.42938+0x1c/0x1ac loopprocesswork+0xc8c/0xfd4 looprootcgworkfn+0x24/0x34 processonework+0x244/0x558 workerthread+0x400/0x8fc kthread+0x16c/0x1e0 retfromfork+0x10/0x20
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/407badf73ec9fb0d5744bf2ca1745c1818aa222f
- https://git.kernel.org/stable/c/6917395c4667cfb607ed8bf1826205a59414657c
- https://git.kernel.org/stable/c/9b0cb770f5d7b1ff40bea7ca385438ee94570eec
- https://git.kernel.org/stable/c/e3fda704903f6d1fc351412f1bc6620333959ada
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedbc07c10a3603a5ab3ef01ba42b3d41f9ac63d1b6Fixed407badf73ec9fb0d5744bf2ca1745c1818aa222f
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedbc07c10a3603a5ab3ef01ba42b3d41f9ac63d1b6Fixede3fda704903f6d1fc351412f1bc6620333959ada
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedbc07c10a3603a5ab3ef01ba42b3d41f9ac63d1b6Fixed6917395c4667cfb607ed8bf1826205a59414657c
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedbc07c10a3603a5ab3ef01ba42b3d41f9ac63d1b6Fixed9b0cb770f5d7b1ff40bea7ca385438ee94570eec
Affected versions
v4.*
v4.10
v4.10-rc1
v4.10-rc2
v4.10-rc3
v4.10-rc4
v4.10-rc5
v4.10-rc6
v4.10-rc7
v4.10-rc8
v4.11
v4.11-rc1
v4.11-rc2
v4.11-rc3
v4.11-rc4
v4.11-rc5
v4.11-rc6
v4.11-rc7
v4.11-rc8
v4.12
v4.12-rc1
v4.12-rc2
v4.12-rc3
v4.12-rc4
v4.12-rc5
v4.12-rc6
v4.12-rc7
v4.13
v4.13-rc1
v4.13-rc2
v4.13-rc3
v4.13-rc4
v4.13-rc5
v4.13-rc6
v4.13-rc7
v4.14
v4.14-rc1
v4.14-rc2
v4.14-rc3
v4.14-rc4
v4.14-rc5
v4.14-rc6
v4.14-rc7
v4.14-rc8
v4.15
v4.15-rc1
v4.15-rc2
v4.15-rc3
v4.15-rc4
v4.15-rc5
v4.15-rc6
v4.15-rc7
v4.15-rc8
v4.15-rc9
v4.16
v4.16-rc1
v4.16-rc2
v4.16-rc3
v4.16-rc4
v4.16-rc5
v4.16-rc6
v4.16-rc7
v4.17
v4.17-rc1
v4.17-rc2
v4.17-rc3
v4.17-rc4
v4.17-rc5
v4.17-rc6
v4.17-rc7
v4.18
v4.18-rc1
v4.18-rc2
v4.18-rc3
v4.18-rc4
v4.18-rc5
v4.18-rc6
v4.18-rc7
v4.18-rc8
v4.19
v4.19-rc1
v4.19-rc2
v4.19-rc3
v4.19-rc4
v4.19-rc5
v4.19-rc6
v4.19-rc7
v4.19-rc8
v4.20
v4.20-rc1
v4.20-rc2
v4.20-rc3
v4.20-rc4
v4.20-rc5
v4.20-rc6
v4.20-rc7
v4.3
v4.3-rc3
v4.3-rc4
v4.3-rc5
v4.3-rc6
v4.3-rc7
v4.4
v4.4-rc1
v4.4-rc2
v4.4-rc3
v4.4-rc4
v4.4-rc5
v4.4-rc6
v4.4-rc7
v4.4-rc8
v4.5
v4.5-rc1
v4.5-rc2
v4.5-rc3
v4.5-rc4
v4.5-rc5
v4.5-rc6
v4.5-rc7
v4.6
v4.6-rc1
v4.6-rc2
v4.6-rc3
v4.6-rc4
v4.6-rc5
v4.6-rc6
v4.6-rc7
v4.7
v4.7-rc1
v4.7-rc2
v4.7-rc3
v4.7-rc4
v4.7-rc5
v4.7-rc6
v4.7-rc7
v4.8
v4.8-rc1
v4.8-rc2
v4.8-rc3
v4.8-rc4
v4.8-rc5
v4.8-rc6
v4.8-rc7
v4.8-rc8
v4.9
v4.9-rc1
v4.9-rc2
v4.9-rc3
v4.9-rc4
v4.9-rc5
v4.9-rc6
v4.9-rc7
v4.9-rc8
v5.*
v5.0
v5.0-rc1
v5.0-rc2
v5.0-rc3
v5.0-rc4
v5.0-rc5
v5.0-rc6
v5.0-rc7
v5.0-rc8
v5.1
v5.1-rc1
v5.1-rc2
v5.1-rc3
v5.1-rc4
v5.1-rc5
v5.1-rc6
v5.1-rc7
v5.10
v5.10-rc1
v5.10-rc2
v5.10-rc3
v5.10-rc4
v5.10-rc5
v5.10-rc6
v5.10-rc7
v5.11
v5.11-rc1
v5.11-rc2
v5.11-rc3
v5.11-rc4
v5.11-rc5
v5.11-rc6
v5.11-rc7
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.100
v5.15.101
v5.15.102
v5.15.103
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.75
v5.15.76
v5.15.77
v5.15.78
v5.15.79
v5.15.8
v5.15.80
v5.15.81
v5.15.82
v5.15.83
v5.15.84
v5.15.85
v5.15.86
v5.15.87
v5.15.88
v5.15.89
v5.15.9
v5.15.90
v5.15.91
v5.15.92
v5.15.93
v5.15.94
v5.15.95
v5.15.96
v5.15.97
v5.15.98
v5.15.99
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v5.2
v5.2-rc1
v5.2-rc2
v5.2-rc3
v5.2-rc4
v5.2-rc5
v5.2-rc6
v5.2-rc7
v5.3
v5.3-rc1
v5.3-rc2
v5.3-rc3
v5.3-rc4
v5.3-rc5
v5.3-rc6
v5.3-rc7
v5.3-rc8
v5.4
v5.4-rc1
v5.4-rc2
v5.4-rc3
v5.4-rc4
v5.4-rc5
v5.4-rc6
v5.4-rc7
v5.4-rc8
v5.5
v5.5-rc1
v5.5-rc2
v5.5-rc3
v5.5-rc4
v5.5-rc5
v5.5-rc6
v5.5-rc7
v5.6
v5.6-rc1
v5.6-rc2
v5.6-rc3
v5.6-rc4
v5.6-rc5
v5.6-rc6
v5.6-rc7
v5.7
v5.7-rc1
v5.7-rc2
v5.7-rc3
v5.7-rc4
v5.7-rc5
v5.7-rc6
v5.7-rc7
v5.8
v5.8-rc1
v5.8-rc2
v5.8-rc3
v5.8-rc4
v5.8-rc5
v5.8-rc6
v5.8-rc7
v5.9
v5.9-rc1
v5.9-rc2
v5.9-rc3
v5.9-rc4
v5.9-rc5
v5.9-rc6
v5.9-rc7
v5.9-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.3
v6.1.4
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.2.1
v6.2.2
v6.2.3
v6.2.4
v6.2.5
v6.2.6
v6.2.7
v6.3-rc1
Database specific
vanir_signatures
[
{
"deprecated": false,
"id": "CVE-2023-53111-6626dcfc",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6917395c4667cfb607ed8bf1826205a59414657c",
"digest": {
"function_hash": "280424649477035275192816224685340893097",
"length": 784.0
},
"target": {
"function": "loop_handle_cmd",
"file": "drivers/block/loop.c"
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"id": "CVE-2023-53111-6a302578",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b0cb770f5d7b1ff40bea7ca385438ee94570eec",
"digest": {
"function_hash": "280424649477035275192816224685340893097",
"length": 784.0
},
"target": {
"function": "loop_handle_cmd",
"file": "drivers/block/loop.c"
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"id": "CVE-2023-53111-6d09bba3",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@407badf73ec9fb0d5744bf2ca1745c1818aa222f",
"digest": {
"function_hash": "280424649477035275192816224685340893097",
"length": 784.0
},
"target": {
"function": "loop_handle_cmd",
"file": "drivers/block/loop.c"
},
"signature_type": "Function",
"signature_version": "v1"
},
{
"deprecated": false,
"id": "CVE-2023-53111-7bbad26c",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e3fda704903f6d1fc351412f1bc6620333959ada",
"digest": {
"line_hashes": [
"193334294052310892089963391084207636149",
"14782763506971191113900811479887234360",
"92853807806449118286956205567760528423",
"194792205469333789449066015464241290560",
"328656966166700105584003487593755292885",
"300336711901199600748931423816393718508",
"253275767705370338346938100805343571224",
"11216852390473757737263555310455517817",
"323819976677972103276239289301126821271",
"116000401357759611930347339058882673415",
"250716287935165077556213854606662727265",
"207318215247547956365750057382610700372",
"263462564095510977466124483185600332132",
"228455130055852946326097429808216676818",
"139490683512698094925466343918437631481",
"113328661416603041955617913630558656718",
"154547763408913221873819650218363118631",
"12319346714307597758267393922567958072",
"79306971363493596568677698019427413026",
"136089273696878758232448797733387709261",
"195978069985388764849461313280523271034",
"83138619049568730826365888537819399952",
"263563130480527867575437123712573162182",
"152292177077365007750050635731070098651",
"327260244070899074665061388036246427611",
"35117640948244452855285421422556939928",
"39811224525780805187295994217874079455"
],
"threshold": 0.9
},
"target": {
"file": "drivers/block/loop.c"
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"id": "CVE-2023-53111-a76891cf",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b0cb770f5d7b1ff40bea7ca385438ee94570eec",
"digest": {
"line_hashes": [
"193334294052310892089963391084207636149",
"14782763506971191113900811479887234360",
"92853807806449118286956205567760528423",
"194792205469333789449066015464241290560",
"328656966166700105584003487593755292885",
"300336711901199600748931423816393718508",
"253275767705370338346938100805343571224",
"11216852390473757737263555310455517817",
"323819976677972103276239289301126821271",
"116000401357759611930347339058882673415",
"250716287935165077556213854606662727265",
"207318215247547956365750057382610700372",
"263462564095510977466124483185600332132",
"228455130055852946326097429808216676818",
"139490683512698094925466343918437631481",
"113328661416603041955617913630558656718",
"154547763408913221873819650218363118631",
"12319346714307597758267393922567958072",
"79306971363493596568677698019427413026",
"136089273696878758232448797733387709261",
"195978069985388764849461313280523271034",
"83138619049568730826365888537819399952",
"263563130480527867575437123712573162182",
"152292177077365007750050635731070098651",
"327260244070899074665061388036246427611",
"35117640948244452855285421422556939928",
"39811224525780805187295994217874079455"
],
"threshold": 0.9
},
"target": {
"file": "drivers/block/loop.c"
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"id": "CVE-2023-53111-ac868202",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@407badf73ec9fb0d5744bf2ca1745c1818aa222f",
"digest": {
"line_hashes": [
"193334294052310892089963391084207636149",
"14782763506971191113900811479887234360",
"92853807806449118286956205567760528423",
"194792205469333789449066015464241290560",
"328656966166700105584003487593755292885",
"300336711901199600748931423816393718508",
"253275767705370338346938100805343571224",
"11216852390473757737263555310455517817",
"323819976677972103276239289301126821271",
"116000401357759611930347339058882673415",
"250716287935165077556213854606662727265",
"207318215247547956365750057382610700372",
"263462564095510977466124483185600332132",
"228455130055852946326097429808216676818",
"139490683512698094925466343918437631481",
"113328661416603041955617913630558656718",
"154547763408913221873819650218363118631",
"12319346714307597758267393922567958072",
"79306971363493596568677698019427413026",
"136089273696878758232448797733387709261",
"195978069985388764849461313280523271034",
"83138619049568730826365888537819399952",
"263563130480527867575437123712573162182",
"152292177077365007750050635731070098651",
"327260244070899074665061388036246427611",
"35117640948244452855285421422556939928",
"39811224525780805187295994217874079455"
],
"threshold": 0.9
},
"target": {
"file": "drivers/block/loop.c"
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"id": "CVE-2023-53111-bc5f6027",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@6917395c4667cfb607ed8bf1826205a59414657c",
"digest": {
"line_hashes": [
"193334294052310892089963391084207636149",
"14782763506971191113900811479887234360",
"92853807806449118286956205567760528423",
"194792205469333789449066015464241290560",
"328656966166700105584003487593755292885",
"300336711901199600748931423816393718508",
"253275767705370338346938100805343571224",
"11216852390473757737263555310455517817",
"323819976677972103276239289301126821271",
"116000401357759611930347339058882673415",
"250716287935165077556213854606662727265",
"207318215247547956365750057382610700372",
"263462564095510977466124483185600332132",
"228455130055852946326097429808216676818",
"139490683512698094925466343918437631481",
"113328661416603041955617913630558656718",
"154547763408913221873819650218363118631",
"12319346714307597758267393922567958072",
"79306971363493596568677698019427413026",
"136089273696878758232448797733387709261",
"195978069985388764849461313280523271034",
"83138619049568730826365888537819399952",
"263563130480527867575437123712573162182",
"152292177077365007750050635731070098651",
"327260244070899074665061388036246427611",
"35117640948244452855285421422556939928",
"39811224525780805187295994217874079455"
],
"threshold": 0.9
},
"target": {
"file": "drivers/block/loop.c"
},
"signature_type": "Line",
"signature_version": "v1"
},
{
"deprecated": false,
"id": "CVE-2023-53111-e7e2e7d4",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e3fda704903f6d1fc351412f1bc6620333959ada",
"digest": {
"function_hash": "280424649477035275192816224685340893097",
"length": 784.0
},
"target": {
"function": "loop_handle_cmd",
"file": "drivers/block/loop.c"
},
"signature_type": "Function",
"signature_version": "v1"
}
]