CVE-2023-53709 — Time-of-check Time-of-use (TOCTOU) Race Condition in Linux

CWE-367 — Time-of-check Time-of-use (TOCTOU) Race Condition6 documents5 sources

Severity

5.5MEDIUM

No vector

EPSS

0.0%

top 91.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedOct 22

Description

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Handle race between rb_move_tail and rb_check_pages It seems a data race between ring_buffer writing and integrity check. That is, RB_FLAG of head_page is been updating, while at same time RB_FLAG was cleared when doing integrity check rb_check_pages(): rb_check_pages() rb_handle_head_page(): -------- -------- rb_head_page_deactivate() rb_head_page_set_normal() rb_head_page_activate() We do intergrity test of th…

Affected Packages4 packages

▶Linuxlinux/linux_kernel5.7.0 — 5.10.173+3

▶Debianlinux/linux_kernel< 5.10.178-1+3

▶CVEListV5linux/linux1039221cc2787dee51a7ffbf9b0e79d192dadf76 — 6e02a43acd0691791df79ce538f2dd497a6c9b76+5

▶debiandebian/linux< linux 6.1.20-1 (bookworm)

🔴Vulnerability Details

OSV

CVE-2023-53709: In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Handle race between rb_move_tail and rb_check_pages It seems a data r↗2025-10-22

▶

OSV

ring-buffer: Handle race between rb_move_tail and rb_check_pages↗2025-10-22

▶

GHSA

GHSA-2v5h-c6vh-95p9: In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Handle race between rb_move_tail and rb_check_pages It seems a data↗2025-10-22

▶

📋Vendor Advisories

Red Hat

kernel: ring-buffer: Handle race between rb_move_tail and rb_check_pages↗2025-10-22

▶

Debian

CVE-2023-53709: linux - In the Linux kernel, the following vulnerability has been resolved: ring-buffer...↗2023

▶