CVE-2023-53591Improper Locking in Linux

CWE-667Improper LockingCWE-833Deadlock5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 98.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedOct 4

Description

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix deadlock in tc route query code Cited commit causes ABBA deadlock[0] when peer flows are created while holding the devcom rw semaphore. Due to peer flows offload implementation the lock is taken much higher up the call chain and there is no obvious way to easily fix the deadlock. Instead, since tc route query code needs the peer eswitch structure only to perform a lookup in xarray and doesn't perform any sleepin

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

NVDlinux/linux_kernel5.13.175.14+4
Debianlinux/linux_kernel< 6.1.37-1+2
CVEListV5linux/linuxf9d196bd632b8b79261ec3366c30ec3923ea9a0269966bce28da6aadccfd968b75d128a79da32d17+6
debiandebian/linux< linux 6.1.37-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
GHSA
GHSA-8qq6-88xp-8ghp: In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix deadlock in tc route query code Cited commit causes ABBA deadlock2025-10-04
OSV
CVE-2023-53591: In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix deadlock in tc route query code Cited commit causes ABBA deadlock[02025-10-04

📋Vendor Advisories

2
Red Hat
kernel: net/mlx5e: Fix deadlock in tc route query code2025-10-04
Debian
CVE-2023-53591: linux - In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: ...2023