CVE-2023-53609 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved: scsi: Revert "scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed" The "atomic_inc(&cmd->device->iorequest_cnt)" in scsi_queue_rq() would cause kernel panic because cmd->device may be freed after returning from scsi_dispatch_cmd(). This reverts commit cfee29ffb45b1c9798011b19d454637d1b0fe87d.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

References

Link	Providers
https://git.kernel.org/stable/c/35fe6fa57b994e7da222893adf0bb748d6055e73
https://git.kernel.org/stable/c/6ca9818d1624e136a76ae8faedb6b6c95ca66903

History

Sat, 04 Oct 2025 16:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: scsi: Revert "scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed" The "atomic_inc(&cmd->device->iorequest_cnt)" in scsi_queue_rq() would cause kernel panic because cmd->device may be freed after returning from scsi_dispatch_cmd(). This reverts commit cfee29ffb45b1c9798011b19d454637d1b0fe87d.
Title		scsi: Revert "scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed"
References		https://git.kernel.org/stable/c/35fe6fa57b994e7da222893adf0bb748d6055e73 https://git.kernel.org/stable/c/6ca9818d1624e136a76ae8faedb6b6c95ca66903

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-10-04T15:44:18.151Z

Updated: 2025-10-04T15:44:18.151Z

Reserved: 2025-10-04T15:40:38.480Z

Link: CVE-2023-53609

Vulnrichment

No data.

NVD

Status : Received

Published: 2025-10-04T16:15:57.647

Modified: 2025-10-04T16:15:57.647

Link: CVE-2023-53609

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-53609", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2025-10-04T15:40:38.480Z", "datePublished": "2025-10-04T15:44:18.151Z", "dateUpdated": "2025-10-04T15:44:18.151Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-10-04T15:44:18.151Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nscsi: Revert \"scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed\"\n\nThe \"atomic_inc(&cmd->device->iorequest_cnt)\" in scsi_queue_rq() would\ncause kernel panic because cmd->device may be freed after returning from\nscsi_dispatch_cmd().\n\nThis reverts commit cfee29ffb45b1c9798011b19d454637d1b0fe87d."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/scsi/scsi_lib.c"], "versions": [{"version": "cfee29ffb45b1c9798011b19d454637d1b0fe87d", "lessThan": "35fe6fa57b994e7da222893adf0bb748d6055e73", "status": "affected", "versionType": "git"}, {"version": "cfee29ffb45b1c9798011b19d454637d1b0fe87d", "lessThan": "6ca9818d1624e136a76ae8faedb6b6c95ca66903", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/scsi/scsi_lib.c"], "versions": [{"version": "6.2", "status": "affected"}, {"version": "0", "lessThan": "6.2", "status": "unaffected", "versionType": "semver"}, {"version": "6.3.4", "lessThanOrEqual": "6.3.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.4", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.2", "versionEndExcluding": "6.3.4"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "6.2", "versionEndExcluding": "6.4"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/35fe6fa57b994e7da222893adf0bb748d6055e73"}, {"url": "https://git.kernel.org/stable/c/6ca9818d1624e136a76ae8faedb6b6c95ca66903"}], "title": "scsi: Revert \"scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed\"", "x_generator": {"engine": "bippy-1.2.0"}}}}