Linux Kernel Vulnerability in SMC Port Management by Alibaba Cloud
CVE-2023-54318

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
30 December 2025

What is CVE-2023-54318?

A vulnerability in the Linux kernel's SMC (Shared Memory Communications) protocol could lead to a kernel crash during the execution of smcr_port_add. The issue arises from concurrent modifications to the smc_lgr_list.list while an execution is attempting to iterate through it. This oversight allows for a NULL pointer dereference, potentially resulting in unexpected system failures or instability. To mitigate this risk, the implementation has been updated to utilize smc_lgr_list.lock to safeguard the list iteration process, thereby preventing race conditions and ensuring system reliability.

Affected Version(s)

Linux 1f90a05d9ff907c70456e7c9d7058372679a88c6

Linux 1f90a05d9ff907c70456e7c9d7058372679a88c6 < 06b4934ab2b534bb92935c7601852066ebb9eab8

Linux 1f90a05d9ff907c70456e7c9d7058372679a88c6 < 70c8d17007dc4a07156b7da44509527990e569b3

References

https://git.kernel.org/stable/c/d1c6c93c27a4bf48006ab16cd...
https://git.kernel.org/stable/c/06b4934ab2b534bb92935c760...
https://git.kernel.org/stable/c/70c8d17007dc4a07156b7da44...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2023-54318 : Linux Kernel Vulnerability in SMC Port Management by Alibaba Cloud