CVE-2023-54043
Linked List Corruption in Linux Kernel iommufd HWPT Attachment
Publication date: 2025-12-24
Last updated on: 2025-12-24
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel involves the iommufd component where the same hardware page table (hwpt) is added twice to the ioas->hwpt_list linked list. Normally, the hwpt is added only once during its creation, but due to a leftover code issue, it can be added twice, which may corrupt the linked list in some cases.
How can this vulnerability impact me? :
The impact of this vulnerability is that adding the same hwpt twice can corrupt the linked list managing hardware page tables, potentially leading to instability or malfunction in the hardware page table attachment process within the Linux kernel's IOMMU framework. However, the exact impact is limited to HWPT specific attachment scenarios, which are not covered by the test suite until a legitimate struct device with a non-system IOMMU driver can be created.