CVE-2023-52860
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-52860
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52860.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-52860
- Downstream
- Related
- Published
- 2024-05-21T15:31:53.194Z
- Modified
- 2025-11-27T02:32:26.054546Z
- Summary
- drivers/perf: hisi: use cpuhp_state_remove_instance_nocalls() for hisi_hns3_pmu uninit process
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
drivers/perf: hisi: use cpuhpstateremoveinstancenocalls() for hisihns3pmu uninit process
When tearing down a 'hisi_hns3' PMU, we mistakenly run the CPU hotplug callbacks after the device has been unregistered, leading to fireworks when we try to execute empty function callbacks within the driver:
| Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000 | CPU: 0 PID: 15 Comm: cpuhp/0 Tainted: G W O 5.12.0-rc4+ #1 | Hardware name: , BIOS KpxxxFPGA 1P B600 V143 04/22/2021 | pstate: 80400009 (Nzcv daif +PAN -UAO -TCO BTYPE=--) | pc : perfpmumigratecontext+0x98/0x38c | lr : perfpmumigratecontext+0x94/0x38c | | Call trace: | perfpmumigratecontext+0x98/0x38c | hisihns3pmuofflinecpu+0x104/0x12c [hisihns3_pmu]
Use cpuhpstateremoveinstancenocalls() instead of cpuhpstateremove_instance() so that the notifiers don't execute after the PMU device has been unregistered.
[will: Rewrote commit message]
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/blob/cc431b3424123d84bcd7afd4de150b33f117a8ef/cves/2023/52xxx/CVE-2023-52860.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/3f5827371763f2d9c70719c270055a81d030f3d0
- https://git.kernel.org/stable/c/4589403a343bb0c72a6faf5898386ff964d4e01a
- https://git.kernel.org/stable/c/50b560783f7f71790bcf70e9e9855155fb0af8c1
- https://git.kernel.org/stable/c/d04ff5437a45f275db5530efb49b68d0ec851f6f
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced66637ab137b44914356a9dc7a9b3f8ebcf0b0695Fixed4589403a343bb0c72a6faf5898386ff964d4e01a
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced66637ab137b44914356a9dc7a9b3f8ebcf0b0695Fixed3f5827371763f2d9c70719c270055a81d030f3d0
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced66637ab137b44914356a9dc7a9b3f8ebcf0b0695Fixedd04ff5437a45f275db5530efb49b68d0ec851f6f
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced66637ab137b44914356a9dc7a9b3f8ebcf0b0695Fixed50b560783f7f71790bcf70e9e9855155fb0af8c1