Description

In the Linux kernel, the following vulnerability has been resolved: tee: amdtee: fix race condition in amdtee_open_session There is a potential race condition in amdtee_open_session that may lead to use-after-free. For instance, in amdtee_open_session() after sess->sess_mask is set, and before setting: sess->session_info[i] = session_info; if amdtee_close_session() closes this same session, then 'sess' data structure will be released, causing kernel panic when 'sess' is accessed within amdtee_open_session(). The solution is to set the bit sess->sess_mask as the last step in amdtee_open_session().

INFO

Published Date :

2025-05-02T15:55:04.071Z

Last Modified :

2025-05-04T07:48:32.190Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53047 vulnerability.

Vendors Products
Linux
  • Linux Kernel
Redhat
  • Enterprise Linux
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53047.

URL Resource
https://git.kernel.org/stable/c/02b296978a2137d7128151c542e84dc96400bc00 cve-icon cve-icon
https://git.kernel.org/stable/c/a63cce9393e4e7dbc5af82dc87e68cb321cb1a78 cve-icon cve-icon
https://git.kernel.org/stable/c/b3ef9e6fe09f1a132af28c623edcf4d4f39d9f35 cve-icon cve-icon
https://git.kernel.org/stable/c/f632a90f8e39db39b322107b9a8d438b826a7f4f cve-icon cve-icon
https://git.kernel.org/stable/c/f8502fba45bd30e1a6a354d9d898bc99d1a11e6d cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025050204-CVE-2023-53047-7e31@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53047 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53047 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact