Description

In the Linux kernel, the following vulnerability has been resolved: io_uring/poll: don't reissue in case of poll race on multishot request A previous commit fixed a poll race that can occur, but it's only applicable for multishot requests. For a multishot request, we can safely ignore a spurious wakeup, as we never leave the waitqueue to begin with. A blunt reissue of a multishot armed request can cause us to leak a buffer, if they are ring provided. While this seems like a bug in itself, it's not really defined behavior to reissue a multishot request directly. It's less efficient to do so as well, and not required to rearm anything like it is for singleshot poll requests.

INFO

Published Date :

2024-08-21T06:10:35.179Z

Last Modified :

2025-05-04T07:45:28.206Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-52895 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-52895.

URL Resource
https://git.kernel.org/stable/c/36fc7317cdb16cfeae0f879916995037bb615ac4 cve-icon cve-icon
https://git.kernel.org/stable/c/8caa03f10bf92cb8657408a6ece6a8a73f96ce13 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2024082111-CVE-2023-52895-5be2@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-52895 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-52895 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact