CVE-2023-54089Operation on a Resource after Expiration or Release in Linux

CWE-672Operation on a Resource after Expiration or Release7 documents6 sources
Severity
6.2MEDIUM
No vector
EPSS
0.0%
top 93.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: virtio_pmem: add the missing REQ_OP_WRITE for flush bio When doing mkfs.xfs on a pmem device, the following warning was ------------[ cut here ]------------ WARNING: CPU: 2 PID: 384 at block/blk-core.c:751 submit_bio_noacct Modules linked in: CPU: 2 PID: 384 Comm: mkfs.xfs Not tainted 6.4.0-rc7+ #154 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996) RIP: 0010:submit_bio_noacct+0x340/0x520 ...... Call Trace: ? submit_bio_

Affected Packages4 packages

Linuxlinux/linux_kernel6.3.06.4.16+1
Debianlinux/linux_kernel< 6.5.3-1+1
CVEListV5linux/linuxb4a6bb3a67aa0c37b2b6cd47efc326eb455de674e39e870e1e683a71d3d2e63e661a5695f60931a7+3
debiandebian/linux< linux 6.5.3-1 (forky)

🔴Vulnerability Details

3
GHSA
GHSA-v2v9-hx36-32x2: In the Linux kernel, the following vulnerability has been resolved: virtio_pmem: add the missing REQ_OP_WRITE for flush bio When doing mkfs2025-12-24
OSV
CVE-2023-54089: In the Linux kernel, the following vulnerability has been resolved: virtio_pmem: add the missing REQ_OP_WRITE for flush bio When doing mkfs2025-12-24
OSV
virtio_pmem: add the missing REQ_OP_WRITE for flush bio2025-12-24

📋Vendor Advisories

2
Red Hat
kernel: virtio_pmem: add the missing REQ_OP_WRITE for flush bio2025-12-24
Debian
CVE-2023-54089: linux - In the Linux kernel, the following vulnerability has been resolved: virtio_pmem...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-54089 Impact, Exploitability, and Mitigation Steps | Wiz