CVE-2023-54119 — Time-of-check Time-of-use (TOCTOU) Race Condition in Linux

CWE-367 — Time-of-check Time-of-use (TOCTOU) Race Condition7 documents6 sources

Severity

3.3LOW

No vector

EPSS

0.0%

top 89.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: inotify: Avoid reporting event with invalid wd When inotify_freeing_mark() races with inotify_handle_inode_event() it can happen that inotify_handle_inode_event() sees that i_mark->wd got already reset to -1 and reports this value to userspace which can confuse the inotify listener. Avoid the problem by validating that wd is sensible (and pretend the mark got removed before the event got generated otherwise).

Affected Packages4 packages

▶Linuxlinux/linux_kernel2.6.31 — 5.4.243+5

▶Debianlinux/linux_kernel< 5.10.191-1+3

▶CVEListV5linux/linux7e790dd5fc937bc8d2400c30a05e32a9e9eef276 — 8fb33166aed888769ea63d6af49515893f8a1f14+7

▶debiandebian/linux< linux 6.1.37-1 (bookworm)

🔴Vulnerability Details

GHSA

GHSA-wgxf-ch55-cw7h: In the Linux kernel, the following vulnerability has been resolved: inotify: Avoid reporting event with invalid wd When inotify_freeing_mark() races↗2025-12-24

▶

OSV

inotify: Avoid reporting event with invalid wd↗2025-12-24

▶

OSV

CVE-2023-54119: In the Linux kernel, the following vulnerability has been resolved: inotify: Avoid reporting event with invalid wd When inotify_freeing_mark() races w↗2025-12-24

▶

📋Vendor Advisories

Red Hat

kernel: inotify: Avoid reporting event with invalid wd↗2025-12-24

▶

Debian

CVE-2023-54119: linux - In the Linux kernel, the following vulnerability has been resolved: inotify: Av...↗2023

▶

🕵️Threat Intelligence

Wiz

CVE-2023-54119 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶