CVE-2023-53207

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-53207
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53207.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-53207
Downstream
Related
Published
2025-09-15T14:21:35.378Z
Modified
2026-02-21T05:34:12.257648Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
ublk: fail to recover device if queue setup is interrupted
Details

In the Linux kernel, the following vulnerability has been resolved:

ublk: fail to recover device if queue setup is interrupted

In ublkctrlendrecovery(), if waitforcompletioninterruptible() is interrupted by signal, queues aren't setup successfully yet, so we have to fail UBLKCMDENDUSERRECOVERY, otherwise kernel oops can be triggered.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53207.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
c732a852b419fa057b53657e2daaf9433940391c
Fixed
84415f934ad4e96f3507fd09b831953d60fb04ec
Fixed
b3a1e243a74632f88b22e713f1c7256754017d58
Fixed
0c0cbd4ebc375ceebc75c89df04b74f215fab23a

Affected versions

v6.*
v6.0
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.4.1
v6.4.2
v6.4.3
v6.4.4
v6.4.5
v6.4.6
v6.4.7

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53207.json"
vanir_signatures 
[
    {
        "id": "CVE-2023-53207-06a451d2",
        "target": {
            "function": "ublk_ctrl_end_recovery",
            "file": "drivers/block/ublk_drv.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b3a1e243a74632f88b22e713f1c7256754017d58",
        "digest": {
            "function_hash": "138546972112524146591418317705809894072",
            "length": 1121.0
        },
        "signature_type": "Function"
    },
    {
        "id": "CVE-2023-53207-90bc3134",
        "target": {
            "file": "drivers/block/ublk_drv.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@84415f934ad4e96f3507fd09b831953d60fb04ec",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "9668140222944045661829123783755175475",
                "141130709407349014883666390148100690954",
                "7734420627537967558079604558566679985",
                "282364958983129792327069215251321151985"
            ]
        },
        "signature_type": "Line"
    },
    {
        "id": "CVE-2023-53207-9d7ed750",
        "target": {
            "function": "ublk_ctrl_end_recovery",
            "file": "drivers/block/ublk_drv.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0c0cbd4ebc375ceebc75c89df04b74f215fab23a",
        "digest": {
            "function_hash": "138546972112524146591418317705809894072",
            "length": 1121.0
        },
        "signature_type": "Function"
    },
    {
        "id": "CVE-2023-53207-b9b32ca1",
        "target": {
            "file": "drivers/block/ublk_drv.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b3a1e243a74632f88b22e713f1c7256754017d58",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "9668140222944045661829123783755175475",
                "141130709407349014883666390148100690954",
                "7734420627537967558079604558566679985",
                "282364958983129792327069215251321151985"
            ]
        },
        "signature_type": "Line"
    },
    {
        "id": "CVE-2023-53207-c96c978c",
        "target": {
            "function": "ublk_ctrl_end_recovery",
            "file": "drivers/block/ublk_drv.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@84415f934ad4e96f3507fd09b831953d60fb04ec",
        "digest": {
            "function_hash": "76657333738828190761420782136765480393",
            "length": 1116.0
        },
        "signature_type": "Function"
    },
    {
        "id": "CVE-2023-53207-eb0fe691",
        "target": {
            "file": "drivers/block/ublk_drv.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@0c0cbd4ebc375ceebc75c89df04b74f215fab23a",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "9668140222944045661829123783755175475",
                "141130709407349014883666390148100690954",
                "7734420627537967558079604558566679985",
                "282364958983129792327069215251321151985"
            ]
        },
        "signature_type": "Line"
    }
]

Git / github.com/gregkh/linux

Affected ranges

Type
GIT
Repo
https://github.com/gregkh/linux
Events
Introduced
830b3c68c1fb1e9176028d02ef86f3cf76aa2476
Fixed
52a953d0934b17a88f403b4135eb3cdf83d19f91
Introduced
c9c3395d5e3dcc6daee66c6908354d47bf98cb0c
Fixed
714a286bf9ee3740260c61471ed72d10bd17336a

Affected versions

v6.*
v6.1
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.4.1
v6.4.2
v6.4.3
v6.4.4
v6.4.5
v6.4.6
v6.4.7

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53207.json"