DEBIAN-CVE-2023-53536
- Source
- https://security-tracker.debian.org/tracker/CVE-2023-53536
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2023-53536.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2023-53536
- Upstream
- Published
- 2025-10-04T16:15:48Z
- Modified
- 2025-10-05T08:10:33.027650Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved: blk-crypto: make blkcryptoevictkey() more robust If blkcryptoevictkey() sees that the key is still in-use (due to a bug) or that ->keyslotevict failed, it currently just returns while leaving the key linked into the keyslot management structures. However, blkcryptoevictkey() is only called in contexts such as inode eviction where failure is not an option. So actually the caller proceeds with freeing the blkcryptokey regardless of the return value of blkcryptoevictkey(). These two assumptions don't match, and the result is that there can be a use-after-free in blkcryptoreprogramallkeys() after one of these errors occurs. (Note, these errors *shouldn't* happen; we're just talking about what happens if they do anyway.) Fix this by making blkcryptoevictkey() unlink the key from the keyslot management structures even on failure. Also improve some comments.
- References
Affected packages
Debian:11 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.10.191-1
Affected versions
5.*
Debian:12 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Debian:13 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Debian:14 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source