Description

In the Linux kernel, the following vulnerability has been resolved: riscv: ftrace: Fixup panic by disabling preemption In RISCV, we must use an AUIPC + JALR pair to encode an immediate, forming a jump that jumps to an address over 4K. This may cause errors if we want to enable kernel preemption and remove dependency from patching code with stop_machine(). For example, if a task was switched out on auipc. And, if we changed the ftrace function before it was switched back, then it would jump to an address that has updated 11:0 bits mixing with previous XLEN:12 part. p: patched area performed by dynamic ftrace ftrace_prologue: p| REG_S ra, -SZREG(sp) p| auipc ra, 0x? ------------> preempted ... change ftrace function ... p| jalr -?(ra) <------------- switched back p| REG_L ra, -SZREG(sp) func: xxx ret

INFO

Published Date :

2025-10-22T13:23:35.869Z

Last Modified :

2025-10-22T13:23:35.869Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53694 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53694.

URL Resource
https://git.kernel.org/stable/c/20a7510e781084364691b4962de31de758194cc9 cve-icon cve-icon
https://git.kernel.org/stable/c/84cfcf240f4a577733b1d98fcd2611a611612b03 cve-icon cve-icon
https://git.kernel.org/stable/c/8547649981e6631328cd64f583667501ae385531 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025102210-CVE-2023-53694-ed6b@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53694 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53694 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact