CVE-2023-54209
Debugfs Entries Leakage Vulnerability in Linux Kernel blk_trace
Publication date: 2025-12-30
Last updated on: 2025-12-30
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
| linux | kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a flaw in the Linux kernel's block subsystem related to blktrace debugfs entries. Due to a regression, blktrace can remain enabled after a disk is removed (del_gendisk) if the disk was opened before removal and blktrace was not properly shut down before closing the disk. This causes debugfs entries to be leaked. The fix involves shutting down blktrace in disk_release(), ensuring proper cleanup.
How can this vulnerability impact me? :
The impact of this vulnerability is that debugfs entries related to blktrace can be leaked, potentially leading to resource leakage or unintended exposure of debug information. This could affect system stability or security by leaving debug interfaces accessible longer than intended.
What immediate steps should I take to mitigate this vulnerability?
Apply the patch that fixes the blktrace debugfs entries leakage by ensuring blktrace is properly shutdown in disk_release(). This involves updating the Linux kernel to a version that includes the fix where blk_trace_shutdown() is moved appropriately and blktrace is shutdown in disk_release() to prevent debugfs entries leakage.