Description

In the Linux kernel, the following vulnerability has been resolved: crypto: essiv - Handle EBUSY correctly As it is essiv only handles the special return value of EINPROGERSS, which means that in all other cases it will free data related to the request. However, as the caller of essiv may specify MAY_BACKLOG, we also need to expect EBUSY and treat it in the same way. Otherwise backlogged requests will trigger a use-after-free.

INFO

Published Date :

2025-12-24T12:22:57.416Z

Last Modified :

2025-12-24T12:22:57.416Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-54046 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-54046.

URL Resource
https://git.kernel.org/stable/c/69c67d451fc19d88e54f7d97e8e7c093e08357e1 cve-icon cve-icon
https://git.kernel.org/stable/c/796e02cca30a67322161f0745e5ce994bbe75605 cve-icon cve-icon
https://git.kernel.org/stable/c/840a1d3b77c1b062bd62b4733969a5b1efc274ce cve-icon cve-icon
https://git.kernel.org/stable/c/a006aa3eedb8bfd6fe317c3cfe9c86ffe76b2385 cve-icon cve-icon
https://git.kernel.org/stable/c/b5a772adf45a32c68bef28e60621f12617161556 cve-icon cve-icon
https://git.kernel.org/stable/c/c61e7d182ee3f3f5ecf18a2964e303d49c539b52 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025122423-CVE-2023-54046-aaf6@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-54046 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-54046 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact