CVE-2023-53256Use of Multiple Resources with Duplicate Identifier in Linux

CWE-694Use of Multiple Resources with Duplicate Identifier5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 95.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedSep 15

Description

In the Linux kernel, the following vulnerability has been resolved: firmware: arm_ffa: Fix FFA device names for logical partitions Each physical partition can provide multiple services each with UUID. Each such service can be presented as logical partition with a unique combination of VM ID and UUID. The number of distinct UUID in a system will be less than or equal to the number of logical partitions. However, currently it fails to register more than one logical partition or service within a

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

NVDlinux/linux_kernel5.145.15.114+3
Debianlinux/linux_kernel< 6.1.37-1+2
CVEListV5linux/linuxe781858488b918e30a6ff28e9eab6058b787e3b3c2f65991097a62efbdb2bed3c06fc86b08c9593b+4
debiandebian/linux< linux 6.1.37-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
OSV
CVE-2023-53256: In the Linux kernel, the following vulnerability has been resolved: firmware: arm_ffa: Fix FFA device names for logical partitions Each physical parti2025-09-15
GHSA
GHSA-vg5j-xj2v-j47w: In the Linux kernel, the following vulnerability has been resolved: firmware: arm_ffa: Fix FFA device names for logical partitions Each physical par2025-09-15

📋Vendor Advisories

2
Red Hat
kernel: Linux kernel: Denial of Service in ARM FF-A due to duplicate device names during logical partition registration.2025-09-15
Debian
CVE-2023-53256: linux - In the Linux kernel, the following vulnerability has been resolved: firmware: a...2023
CVE-2023-53256 — Linux vulnerability | cvebase