Locking Flaw in Linux Kernel Affecting RTL8723BS Driver
CVE-2023-53281

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 September 2025

What is CVE-2023-53281?

A vulnerability in the Linux kernel's RTL8723BS driver was introduced due to the use of inappropriate locking mechanisms. The function _rtw_join_timeout_handler() incorrectly switched to spin_lock_irq() from spin_lock_bh(), which disables IRQs unnecessarily during execution. This alteration led to a problematic situation, particularly when the function does not require IRQ disabling, resulting in potential system disruptions as seen in kernel warnings. The solution includes reverting to the use of spin_lock_bh() to ensure proper handling of lock operations without interfering with IRQ processing.

Affected Version(s)

Linux ae60744d5fad840b9d056d35b4b652d95e755846 < 209850f17717a3b5cc558578bef5631ac7045539

Linux 041879b12ddb0c6c83ed9c0bdd10dc82a056f2fc < 2a50e44a66d268ee5db3d177f1fdc1503dbce6e7

Linux 041879b12ddb0c6c83ed9c0bdd10dc82a056f2fc

References

https://git.kernel.org/stable/c/209850f17717a3b5cc558578b...

https://git.kernel.org/stable/c/2a50e44a66d268ee5db3d177f...

https://git.kernel.org/stable/c/dc327e87c6d9bfd9ee08e7639...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 16, 2025
Vulnerability Reserved
Sep 16, 2025