CVE-2023-54100

In qedi_probe() we call _qediprobe() which initializes &qedi->recoverywork with qedirecoveryhandler() and &qedi->boarddisablework with qediboarddisablework().

When qedischedulerecoveryhandler() is called, scheduledelayed_work() will finally start the work.

In qedi_remove(), which is called to remove the driver, the following sequence may be observed:

Fix this by finishing the work before cleanup in qedi_remove().

CPU0 CPU1

                 |qedi_recovery_handler

Cancel recoverywork and boarddisable_work in _qediremove().

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54100.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

4b1068f5d74b6cc92319bd7eba40809b1222e73f

Fixed

fa19c533ab19161298f0780bcc6523af88f6fd20

Fixed

5e756a59cee6a8a79b9059c5bdf0ecbf5bb8d151

Fixed

3738a230831e861503119ee2691c4a7dc56ed60a

Fixed

89f6023fc321c958a0fb11f143a6eb4544ae3940

Fixed

124027cd1a624ce0347adcd59241a9966a726b22

Fixed

c5749639f2d0a1f6cbe187d05f70c2e7c544d748

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54100.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

5.7.0

Fixed

5.10.180

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.112

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.29

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.2.16

Type: ECOSYSTEM
Events: Introduced

6.3.0

Fixed

6.3.3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54100.json"