CVE-2023-53204 (CNNVD-202509-2100)

UNKNOWN
中文标题:
Linux kernel 安全漏洞
英文标题:
af_unix: Fix data-races around user->unix_inflight.
CVSS分数: N/A
发布时间: 2025-09-15 14:21:32
漏洞类型: 其他
状态: PUBLISHED
数据质量分数: 0.40
数据版本: v4
漏洞描述
中文描述:

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞,该漏洞源于user->unix_inflight存在数据竞争,可能导致未定义行为。

英文描述:

In the Linux kernel, the following vulnerability has been resolved: af_unix: Fix data-races around user->unix_inflight. user->unix_inflight is changed under spin_lock(unix_gc_lock), but too_many_unix_fds() reads it locklessly. Let's annotate the write/read accesses to user->unix_inflight. BUG: KCSAN: data-race in unix_attach_fds / unix_inflight write to 0xffffffff8546f2d0 of 8 bytes by task 44798 on cpu 1: unix_inflight+0x157/0x180 net/unix/scm.c:66 unix_attach_fds+0x147/0x1e0 net/unix/scm.c:123 unix_scm_to_skb net/unix/af_unix.c:1827 [inline] unix_dgram_sendmsg+0x46a/0x14f0 net/unix/af_unix.c:1950 unix_seqpacket_sendmsg net/unix/af_unix.c:2308 [inline] unix_seqpacket_sendmsg+0xba/0x130 net/unix/af_unix.c:2292 sock_sendmsg_nosec net/socket.c:725 [inline] sock_sendmsg+0x148/0x160 net/socket.c:748 ____sys_sendmsg+0x4e4/0x610 net/socket.c:2494 ___sys_sendmsg+0xc6/0x140 net/socket.c:2548 __sys_sendmsg+0x94/0x140 net/socket.c:2577 __do_sys_sendmsg net/socket.c:2586 [inline] __se_sys_sendmsg net/socket.c:2584 [inline] __x64_sys_sendmsg+0x45/0x50 net/socket.c:2584 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x3b/0x90 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x6e/0xd8 read to 0xffffffff8546f2d0 of 8 bytes by task 44814 on cpu 0: too_many_unix_fds net/unix/scm.c:101 [inline] unix_attach_fds+0x54/0x1e0 net/unix/scm.c:110 unix_scm_to_skb net/unix/af_unix.c:1827 [inline] unix_dgram_sendmsg+0x46a/0x14f0 net/unix/af_unix.c:1950 unix_seqpacket_sendmsg net/unix/af_unix.c:2308 [inline] unix_seqpacket_sendmsg+0xba/0x130 net/unix/af_unix.c:2292 sock_sendmsg_nosec net/socket.c:725 [inline] sock_sendmsg+0x148/0x160 net/socket.c:748 ____sys_sendmsg+0x4e4/0x610 net/socket.c:2494 ___sys_sendmsg+0xc6/0x140 net/socket.c:2548 __sys_sendmsg+0x94/0x140 net/socket.c:2577 __do_sys_sendmsg net/socket.c:2586 [inline] __se_sys_sendmsg net/socket.c:2584 [inline] __x64_sys_sendmsg+0x45/0x50 net/socket.c:2584 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x3b/0x90 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x6e/0xd8 value changed: 0x000000000000000c -> 0x000000000000000d Reported by Kernel Concurrency Sanitizer on: CPU: 0 PID: 44814 Comm: systemd-coredum Not tainted 6.4.0-11989-g6843306689af #6 Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.16.0-0-gd239552ce722-prebuilt.qemu.org 04/01/2014

CWE类型:
CWE-362
标签:
(暂无数据)
受影响产品
厂商 产品 版本 版本范围 平台 CPE
Linux Linux a5a6cf8c405e826ff7ed1308dde72560c0ed4854 - - cpe:2.3:a:linux:linux:a5a6cf8c405e826ff7ed1308dde72560c0ed4854:*:*:*:*:*:*:*
Linux Linux df87da0783c4492b944badfea9d5c3c56b834697 - - cpe:2.3:a:linux:linux:df87da0783c4492b944badfea9d5c3c56b834697:*:*:*:*:*:*:*
Linux Linux 3d024dcef2548028e9f9b7876a544e6e0af00175 - - cpe:2.3:a:linux:linux:3d024dcef2548028e9f9b7876a544e6e0af00175:*:*:*:*:*:*:*
Linux Linux aa51d1c24ec3b6605f7cc7ef500c96cd71d7ef90 - - cpe:2.3:a:linux:linux:aa51d1c24ec3b6605f7cc7ef500c96cd71d7ef90:*:*:*:*:*:*:*
Linux Linux a5b9e44af8d3edaf49d14a91cc519a9fba439e67 - - cpe:2.3:a:linux:linux:a5b9e44af8d3edaf49d14a91cc519a9fba439e67:*:*:*:*:*:*:*
Linux Linux dc6b0ec667f67d4768e72c1b7f1bbc14ea52379c - - cpe:2.3:a:linux:linux:dc6b0ec667f67d4768e72c1b7f1bbc14ea52379c:*:*:*:*:*:*:*
Linux Linux 9b8b611fe0f86f07a4ff4a5f3bcb0ea7ceb7da3b - - cpe:2.3:a:linux:linux:9b8b611fe0f86f07a4ff4a5f3bcb0ea7ceb7da3b:*:*:*:*:*:*:*
Linux Linux 5e226f9689d90ad8ab21b4a969ae3058777f0aff - - cpe:2.3:a:linux:linux:5e226f9689d90ad8ab21b4a969ae3058777f0aff:*:*:*:*:*:*:*
Linux Linux 4.5 - - cpe:2.3:a:linux:linux:4.5:*:*:*:*:*:*:*
linux linux_kernel * - - cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
解决方案
中文解决方案:
(暂无数据)
英文解决方案:
(暂无数据)
临时解决方案:
(暂无数据)
参考链接
无标题 OTHER
cve.org
访问
无标题 OTHER
cve.org
访问
无标题 OTHER
cve.org
访问
无标题 OTHER
cve.org
访问
无标题 OTHER
cve.org
访问
无标题 OTHER
cve.org
访问
无标题 OTHER
cve.org
访问
无标题 OTHER
cve.org
访问
CVSS评分详情
暂无CVSS评分信息
时间信息
发布时间:
2025-09-15 14:21:32
修改时间:
2025-09-15 14:21:32
创建时间:
2025-11-11 15:38:48
更新时间:
2026-01-12 02:26:58
利用信息
暂无可利用代码信息
数据源详情
数据源 记录ID 版本 提取时间
CVE cve_CVE-2023-53204 2025-11-11 15:22:15 2025-11-11 07:38:48
NVD nvd_CVE-2023-53204 2025-11-11 14:59:22 2025-11-11 07:46:52
CNNVD cnnvd_CNNVD-202509-2100 2025-11-11 15:12:57 2025-11-11 08:00:11
版本与语言
当前版本: v4
主要语言: EN
支持语言:
EN ZH
安全公告
暂无安全公告信息
变更历史
v4 NVD
2026-01-12 02:26:58
affected_products_count: 9 → 10
查看详细变更
  • affected_products_count: 9 -> 10
v3 CNNVD
2025-11-11 16:00:11
vulnerability_type: 未提取 → 其他; severity: SeverityLevel.MEDIUM → SeverityLevel.UNKNOWN; cvss_score: 未提取 → 0.0; cnnvd_id: 未提取 → CNNVD-202509-2100; data_sources: ['cve', 'nvd'] → ['cnnvd', 'cve', 'nvd']
查看详细变更
  • vulnerability_type: 未提取 -> 其他
  • severity: SeverityLevel.MEDIUM -> SeverityLevel.UNKNOWN
  • cvss_score: 未提取 -> 0.0
  • cnnvd_id: 未提取 -> CNNVD-202509-2100
  • data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
v2 NVD
2025-11-11 15:46:52
data_sources: ['cve'] → ['cve', 'nvd']
查看详细变更
  • data_sources: ['cve'] -> ['cve', 'nvd']