Vulnerabilities

CVE-2023-54324 - dm: fix a race condition in retrieve_deps

2025-12-30 0 views admin

CVE ID : CVE-2023-54324 Published : Dec. 30, 2025, 1:16 p.m. | 1 hour, 16 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: dm: fix a race condition in retrieve_deps There's a race condition in the multipath target when retrieve_deps races with multipath_message calling dm_get_device and dm_put_device. retrieve_deps walks the list of open devices without holding any lock but multipath may add or remove devices to the list while it is running. The end result may be memory corruption or use-after-free memory access. See this description of a UAF with multipath_message(): Fix this bug by introducing a new rw semaphore

CVE Details

CVE ID

CVE-2023-54324

Published

Dec. 30, 2025

Affected Product: Linux

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2023-54324linux

CVE-2023-54324 - dm: fix a race condition in retrieve_deps

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2025-15252 - Tenda M3 setDhcpAP formSetRemoteDhcpForAp stack-based overflow

CVE-2025-15253 - Tenda M3 exeCommand stack-based overflow

CVE-2025-68618 - Magick's failure to limit the depth of SVG file reads caused a DoS attack.

CVE-2025-15255 - Tenda W6-S R7websSsecurityHandler httpd stack-based overflow

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting