Linux Kernel Null Block Device - Vulnerability in Request Timeout Handling

CVE-2023-53531

What is CVE-2023-53531?

A race condition exists in the Linux kernel related to the null block device's request timeout handling. During an I/O operation on /dev/nullb0, a race between the poll request and timeout handling can result in a kernel panic due to a NULL pointer dereference. This vulnerability allows for the possibility of crashing the kernel if poll requests time out, highlighting the importance of proper synchronization in the request handling mechanisms. The kernel version patches address this issue by ensuring that request states are correctly set under appropriate locks, preventing the race and improving system stability.

References