CVE-2023-53508

Published: Oct 1, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: ublk: fail to start device if queue setup is interrupted In ublk_ctrl_start_dev(), if wait_for_completion_interruptible() is interrupted by signal, queues aren't setup successfully yet, so we have to fail UBLK_CMD_START_DEV, otherwise kernel oops can be triggered. Reported by German when working on qemu-storage-deamon which requires single thread ublk daemon.

Vendor	Product	Versions
Linux	Linux	affected `71f28f3136aff5890cd56de78abc673f8393cad9 - < 0d5916c439574b18a0734872daa0022b3d6105ad` affected `71f28f3136aff5890cd56de78abc673f8393cad9 - < 6ab3e7d424cd413d7a5e976c8a30b4ffa84a65dd` affected `71f28f3136aff5890cd56de78abc673f8393cad9 - < 53e7d08f6d6e214c40db1f51291bb2975c789dc2`
Linux	Linux	affected `6.0` unaffected `0 - < 6.0` unaffected `6.1.43 - <= 6.1.` unaffected `6.4.8 - <= 6.4.` unaffected `6.5 - <= *`

References

https://git.kernel.org/stable/c/0d5916c439574b18a0734872daa0022b3d6105ad

https://git.kernel.org/stable/c/6ab3e7d424cd413d7a5e976c8a30b4ffa84a65dd

https://git.kernel.org/stable/c/53e7d08f6d6e214c40db1f51291bb2975c789dc2

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-53508

Description

Affected Products

References