Wind River Support Network

HomeDefectsLIN1023-18031
Fixed

LIN1023-18031 : Security Advisory - linux - CVE-2023-54209

Created: Dec 31, 2025    Updated: Jan 6, 2026
Resolved Date: Dec 31, 2025
Found In Version: 10.23.30.2
Fix Version: 10.23.30.2
Severity: Standard
Applicable for: Wind River Linux LTS 23
Component/s: Kernel

Description

In the Linux kernel, the following vulnerability has been resolved:

block: fix blktrace debugfs entries leakage

Commit 99d055b4fd4b ("block: remove per-disk debugfs files in
blk_unregister_queue") moves blk_trace_shutdown() from
blk_release_queue() to blk_unregister_queue(), this is safe if blktrace
is created through sysfs, however, there is a regression in corner
case.

blktrace can still be enabled after del_gendisk() through ioctl if
the disk is opened before del_gendisk(), and if blktrace is not shutdown
through ioctl before closing the disk, debugfs entries will be leaked.

Fix this problem by shutdown blktrace in disk_release(), this is safe
because blk_trace_remove() is reentrant.

CVEs

  • Linkedin
  • Facebook
  • Twitter
  • Youtube