CVE-2023-54310
Published: Dec 30, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: scsi: message: mptlan: Fix use after free bug in mptlan_remove() due to race condition mptlan_probe() calls mpt_register_lan_device() which initializes the &priv->post_buckets_task workqueue. A call to mpt_lan_wake_post_buckets_task() will subsequently start the work. During driver unload in mptlan_remove() the following race may occur: CPU0 CPU1 |mpt_lan_post_receive_buckets_work() mptlan_remove() | free_netdev() | kfree(dev); | | | dev->mtu | //use Fix this by finishing the work prior to cleaning up in mptlan_remove(). [mkp: we really should remove mptlan instead of attempting to fix it]
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 92f869693d84e813895ff4d25363744575515423affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 60c8645ad6f5b722615383d595d63b62b07a13c3affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 410e610a96c52a7b41e2ab6c9ca60868d9acecceaffected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < 697f92f8317e538d8409a0c95d6370eb40b34c05affected 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - < e84282efc87f2414839f6e15c31b4daa34ebaac1+3 more versions |
Linux | Linux | affected 2.6.12unaffected 0 - < 2.6.12unaffected 4.14.316 - <= 4.14.*unaffected 4.19.284 - <= 4.19.*unaffected 5.4.244 - <= 5.4.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now