2 matches found
CVE-2023-53810 blk-mq: release crypto keyslot before reporting I/O complete
In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blkcryptokey has completed, filesystems can call blkcryptoevictkey. However, the block layer currently doesn't call blkcryptoputkeyslot until the...
CVE-2023-53810
CVE-2023-53810 is a Linux kernel race condition in the blk-mq/keyslot path. After I/O using a blk_crypto_key completes, keyslot release was delayed until request free, potentially allowing blk_crypto_evict_key() to observe non-zero slot_refs while there is no active bug. The vulnerability manifes...