DEBIAN-CVE-2023-54045

See a problem?
Please try reporting it to the source first.
Source
https://security-tracker.debian.org/tracker/CVE-2023-54045
Import Source
https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2023-54045.json
JSON Data
https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2023-54045
Upstream
Published
2025-12-24T13:16:06.147Z
Modified
2025-12-25T11:20:22.064161Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved: audit: fix possible soft lockup in _auditinodechild() Tracefs or debugfs maybe cause hundreds to thousands of PATH records, too many PATH records maybe cause soft lockup. For example: 1. CONFIGKASAN=y && CONFIGPREEMPTION=n 2. auditctl -a exit,always -S open -k key 3. sysctl -w kernel.watchdogthresh=5 4. mkdir /sys/kernel/debug/tracing/instances/test There may be a soft lockup as follows: watchdog: BUG: soft lockup - CPU#45 stuck for 7s! [mkdir:15498] Kernel panic - not syncing: softlockup: hung tasks Call trace: dumpbacktrace+0x0/0x30c showstack+0x20/0x30 dumpstack+0x11c/0x174 panic+0x27c/0x494 watchdogtimerfn+0x2bc/0x390 _runhrtimer+0x148/0x4fc _hrtimerrunqueues+0x154/0x210 hrtimerinterrupt+0x2c4/0x760 archtimerhandlerphys+0x48/0x60 handlepercpudevidirq+0xe0/0x340 _handledomainirq+0xbc/0x130 gichandleirq+0x78/0x460 el1irq+0xb8/0x140 _auditinodechild+0x240/0x7bc tracefscreatefile+0x1b8/0x2a0 tracecreatefile+0x18/0x50 eventcreatedir+0x204/0x30c _traceaddnewevent+0xac/0x100 eventtraceaddtracer+0xa0/0x130 tracearraycreatedir+0x60/0x140 tracearraycreate+0x1e0/0x370 instancemkdir+0x90/0xd0 tracefssyscallmkdir+0x68/0xa0 vfsmkdir+0x21c/0x34c domkdirat+0x1b4/0x1d4 _arm64sysmkdirat+0x4c/0x60 el0svccommon.constprop.0+0xa8/0x240 doel0svc+0x8c/0xc0 el0svc+0x20/0x30 el0synchandler+0xb0/0xb4 el0sync+0x160/0x180 Therefore, we add condresched() to _auditinodechild() to fix it.

References

Affected packages

Debian:11 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.10.197-1

Affected versions

5.*

5.10.46-4
5.10.46-5
5.10.70-1~bpo10+1
5.10.70-1
5.10.84-1
5.10.92-1~bpo10+1
5.10.92-1
5.10.92-2
5.10.103-1~bpo10+1
5.10.103-1
5.10.106-1
5.10.113-1
5.10.120-1~bpo10+1
5.10.120-1
5.10.127-1
5.10.127-2~bpo10+1
5.10.127-2
5.10.136-1
5.10.140-1
5.10.148-1
5.10.149-1
5.10.149-2
5.10.158-1
5.10.158-2
5.10.162-1
5.10.178-1
5.10.178-2
5.10.178-3
5.10.179-1
5.10.179-2
5.10.179-3
5.10.179-4
5.10.179-5
5.10.191-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2023-54045.json"

Debian:12 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.1.55-1

Affected versions

6.*

6.1.27-1
6.1.37-1
6.1.38-1
6.1.38-2~bpo11+1
6.1.38-2
6.1.38-3
6.1.38-4~bpo11+1
6.1.38-4
6.1.52-1
6.1.55-1~bpo11+1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2023-54045.json"

Debian:13 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.5.3-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2023-54045.json"

Debian:14 / linux

Package

Name
linux
Purl
pkg:deb/debian/linux?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6.5.3-1

Ecosystem specific 

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2023-54045.json"