Description

In the Linux kernel, the following vulnerability has been resolved: start_kernel: Add __no_stack_protector function attribute Back during the discussion of commit a9a3ed1eff36 ("x86: Fix early boot crash on gcc-10, third try") we discussed the need for a function attribute to control the omission of stack protectors on a per-function basis; at the time Clang had support for no_stack_protector but GCC did not. This was fixed in gcc-11. Now that the function attribute is available, let's start using it. Callers of boot_init_stack_canary need to use this function attribute unless they're compiled with -fno-stack-protector, otherwise the canary stored in the stack slot of the caller will differ upon the call to boot_init_stack_canary. This will lead to a call to __stack_chk_fail() then panic.

INFO

Published Date :

2025-10-01T11:45:43.101Z

Last Modified :

2026-01-05T10:20:59.248Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53491 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53491.

URL Resource
https://git.kernel.org/stable/c/25e73018b4093e0cfbcec5dc4a4bb86d0b69ed56 cve-icon cve-icon
https://git.kernel.org/stable/c/514ca14ed5444b911de59ed3381dfd195d99fe4b cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025100123-CVE-2023-53491-2d8b@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53491 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53491 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact