CVE-2023-54268

syzbot is reporting a lockdep warning in fillpool() because the allocation from debugobjects is using GFPATOMIC, which is (__GFP_HIGH | _GFPKSWAPDRECLAIM) and therefore tries to wake up kswapd, which acquires kswapdwait::lock.

Since fillpool() might be called with arbitrary locks held, fillpool() should not assume that acquiring kswapd_wait::lock is safe.

Use __GFP_HIGH instead and remove __GFP_NORETRY as it is pointless for !__GFPDIRECTRECLAIM allocation.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54268.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

3ac7fe5a4aab409bd5674d0b070bce97f9d20872

Fixed

be646802b3dc408c4dc72a3ac32c3f4a0282414d

Fixed

fd673079749bac97bb30f1461df079e6c8e86511

Fixed

aee97eec77029270866c704f66cdf2881cbd2fe1

Fixed

d7fff52c99d52f180d8bef95d8ed8fec6343889c

Fixed

4c088d30a72d9b8f9c6ae9362222942e4075cb00

Fixed

eb799279fb1f9c63c520fe8c1c41cb9154252db6

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54268.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

2.6.26

Fixed

5.4.244

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.181

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.114

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.31

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.3.5

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-54268.json"