CVE-2023-53783
- Source
- https://cve.org/CVERecord?id=CVE-2023-53783
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53783.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-53783
- Downstream
- Related
- Published
- 2025-12-09T00:00:38.679Z
- Modified
- 2026-03-20T12:33:20.331701Z
- Summary
- blk-iocost: fix divide by 0 error in calc_lcoefs()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
blk-iocost: fix divide by 0 error in calc_lcoefs()
echo max of u64 to cost.model can cause divide by 0 error.
# echo 8:0 rbps=18446744073709551615 > /sys/fs/cgroup/io.cost.model
divide error: 0000 [#1] PREEMPT SMP RIP: 0010:calclcoefs+0x4c/0xc0 Call Trace: <TASK> iocrefreshparams+0x2b3/0x4f0 ioccostmodelwrite+0x3cb/0x4c0 ? copyfromiter+0x6d/0x6c0 ? kernfsfopwriteiter+0xfc/0x270 cgroupfilewrite+0xa0/0x200 kernfsfopwriteiter+0x17d/0x270 vfswrite+0x414/0x620 ksys_write+0x73/0x160 __x64syswrite+0x1e/0x30 dosyscall64+0x35/0x80 entrySYSCALL64afterhwframe+0x63/0xcd
calclcoefs() uses the input value of cost.model in DIVROUNDUPULL, overflow would happen if bps plus IOCPAGESIZE is greater than ULLONG_MAX, it can cause divide by 0 error.
Fix the problem by setting basecost
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53783.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/3538ade9d8c2ba41088e395de916f2599fadba8f
- https://git.kernel.org/stable/c/6e291810fe83a384700eb24a1f714966391ed562
- https://git.kernel.org/stable/c/984af1e66b4126cf145153661cc24c213e2ec231
- https://git.kernel.org/stable/c/9e8bf9f95f7a299fa9ea45b678d001806ad5e12c
- https://git.kernel.org/stable/c/b96d7b4a9745fbd0c8384608ceb1f50415e862fa
- https://git.kernel.org/stable/c/bf8eb1fd6110871e6232e8e7efe399276ef7e6f6
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53783.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-53783
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced7caa47151ab2e644dd221f741ec7578d9532c9a3Fixed9e8bf9f95f7a299fa9ea45b678d001806ad5e12cFixed6e291810fe83a384700eb24a1f714966391ed562Fixed3538ade9d8c2ba41088e395de916f2599fadba8fFixedbf8eb1fd6110871e6232e8e7efe399276ef7e6f6Fixedb96d7b4a9745fbd0c8384608ceb1f50415e862faFixed984af1e66b4126cf145153661cc24c213e2ec231