CVE-2023-53216

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-53216
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53216.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-53216
Downstream
Related
Published
2025-09-15T14:21:43.935Z
Modified
2026-04-02T09:43:48.817709Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
arm64: efi: Make efi_rt_lock a raw_spinlock
Details

In the Linux kernel, the following vulnerability has been resolved:

arm64: efi: Make efirtlock a raw_spinlock

Running a rt-kernel base on 6.2.0-rc3-rt1 on an Ampere Altra outputs the following: BUG: sleeping function called from invalid context at kernel/locking/spinlockrt.c:46 inatomic(): 1, irqsdisabled(): 0, nonblock: 0, pid: 9, name: kworker/u320:0 preemptcount: 2, expected: 0 RCU nest depth: 0, expected: 0 3 locks held by kworker/u320:0/9: #0: ffff3fff8c27d128 ((wqcompletion)efirtswq){+.+.}-{0:0}, at: processonework (./include/linux/atomic/atomic-long.h:41) #1: ffff80000861bdd0 ((workcompletion)(&efirtswork.work)){+.+.}-{0:0}, at: processonework (./include/linux/atomic/atomic-long.h:41) #2: ffffdf7e1ed3e460 (efirtlock){+.+.}-{3:3}, at: eficallrts (drivers/firmware/efi/runtime-wrappers.c:101) Preemption disabled at: efivirtmapload (./arch/arm64/include/asm/mmucontext.h:248) CPU: 0 PID: 9 Comm: kworker/u320:0 Tainted: G W 6.2.0-rc3-rt1 Hardware name: WIWYNN Mt.Jade Server System B81.03001.0005/Mt.Jade Motherboard, BIOS 1.08.20220218 (SCP: 1.08.20220218) 2022/02/18 Workqueue: efirtswq eficallrts Call trace: dumpbacktrace (arch/arm64/kernel/stacktrace.c:158) showstack (arch/arm64/kernel/stacktrace.c:165) dumpstacklvl (lib/dumpstack.c:107 (discriminator 4)) dumpstack (lib/dump_stack.c:114) _mightresched (kernel/sched/core.c:10134) rtspinlock (kernel/locking/rtmutex.c:1769 (discriminator 4)) eficallrts (drivers/firmware/efi/runtime-wrappers.c:101) [...]

This seems to come from commit ff7a167961d1 ("arm64: efi: Execute runtime services from a dedicated stack") which adds a spinlock. This spinlock is taken through: eficallrts() -eficallvirt() -eficallvirtpointer() -archeficallvirt_setup()

Make 'efirtlock' a raw_spinlock to avoid being preempted.

[ardb: The EFI runtime services are called with a different set of translation tables, and are permitted to use the SIMD registers. The context switch code preserves/restores neither, and so EFI calls must be made with preemption disabled, rather than only disabling migration.]

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53216.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
4012603cbd469223f225637d265a233f034c567a
Fixed
030b1c4217a4f504c7d0795a2bd86b7181e56f11
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
de2af657cab92afc13a4ccd8780370481ed0eb61
Fixed
6a72729ed6accc86dad5522895e8fa2f96642a2c
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
f75a91c82dc805af8f718ff106ec9c090234b37b
Fixed
8b38969fa01662ec539a0d08a8ea5ec6f31fa4ed
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
ff7a167961d1b97e0e205f245f806e564d3505e7
Fixed
4e8f7d998b582a99aadedd07ae6086e99b89c97a
Fixed
0e68b5517d3767562889f1d83fdb828c26adb24f

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53216.json"