CVE-2023-54002Race Condition within a Thread in Linux

CWE-366Race Condition within a Thread7 documents6 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 92.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion of exclop condition when starting balance Balance as exclusive state is compatible with paused balance and device add, which makes some things more complicated. The assertion of valid states when starting from paused balance needs to take into account two more states, the combinations can be hit when there are several threads racing to start balance and device add. This won't typically happen when the comm

Affected Packages4 packages

Linuxlinux/linux_kernel5.17.06.1.29+2
Debianlinux/linux_kernel< 6.1.37-1+2
CVEListV5linux/linuxa174c0a2e857081195db6888323802f0fae793ef17eaeee4c5f24946aad0298d51f32981c3161d13+4
debiandebian/linux< linux 6.1.37-1 (bookworm)

🔴Vulnerability Details

3
GHSA
GHSA-m54r-3p53-fcch: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion of exclop condition when starting balance Balance as exclus2025-12-24
OSV
btrfs: fix assertion of exclop condition when starting balance2025-12-24
OSV
CVE-2023-54002: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion of exclop condition when starting balance Balance as exclusiv2025-12-24

📋Vendor Advisories

2
Red Hat
kernel: btrfs: fix assertion of exclop condition when starting balance2025-12-24
Debian
CVE-2023-54002: linux - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix ...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-54002 Impact, Exploitability, and Mitigation Steps | Wiz