Description

In the Linux kernel, the following vulnerability has been resolved: block: fix blktrace debugfs entries leakage Commit 99d055b4fd4b ("block: remove per-disk debugfs files in blk_unregister_queue") moves blk_trace_shutdown() from blk_release_queue() to blk_unregister_queue(), this is safe if blktrace is created through sysfs, however, there is a regression in corner case. blktrace can still be enabled after del_gendisk() through ioctl if the disk is opened before del_gendisk(), and if blktrace is not shutdown through ioctl before closing the disk, debugfs entries will be leaked. Fix this problem by shutdown blktrace in disk_release(), this is safe because blk_trace_remove() is reentrant.

INFO

Published Date :

2025-12-30T12:11:08.027Z

Last Modified :

2025-12-30T12:11:08.027Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-54209 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-54209.

URL Resource
https://git.kernel.org/stable/c/7149e57cf01184fba175589f8fbe9fbf33be02e1 cve-icon cve-icon
https://git.kernel.org/stable/c/942e81650b81b4ca62f1d8c61de455c9e7c7e6ca cve-icon cve-icon
https://git.kernel.org/stable/c/aa07e56c6a9c7558165690d14eed4fe8babf34fb cve-icon cve-icon
https://git.kernel.org/stable/c/dd7de3704af9989b780693d51eaea49a665bd9c2 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025123023-CVE-2023-54209-39be@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-54209 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-54209 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact