CVE-2023-54267

EUVD-2023-60374

30.12.2025, 13:16

In the Linux kernel, the following vulnerability has been resolved:

powerpc/pseries: Rework lppaca_shared_proc() to avoid DEBUG_PREEMPT

lppaca_shared_proc() takes a pointer to the lppaca which is typically
accessed through get_lppaca().  With DEBUG_PREEMPT enabled, this leads
to checking if preemption is enabled, for example:

  BUG: using smp_processor_id() in preemptible [00000000] code: grep/10693
  caller is lparcfg_data+0x408/0x19a0
  CPU: 4 PID: 10693 Comm: grep Not tainted 6.5.0-rc3 #2
  Call Trace:
    dump_stack_lvl+0x154/0x200 (unreliable)
    check_preemption_disabled+0x214/0x220
    lparcfg_data+0x408/0x19a0
    ...

This isn't actually a problem however, as it does not matter which
lppaca is accessed, the shared proc state will be the same.
vcpudispatch_stats_procfs_init() already works around this by disabling
preemption, but the lparcfg code does not, erroring any time
/proc/powerpc/lparcfg is accessed with DEBUG_PREEMPT enabled.

Instead of disabling preemption on the caller side, rework
lppaca_shared_proc() to not take a pointer and instead directly access
the lppaca, bypassing any potential preemption checks.

[mpe: Rework to avoid needing a definition in paca.h and lppaca.h]

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	UNKNOWN				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: 14%

Debian Releases

Debian Product

Codename

linux

bookworm	6.1.148-1 fixed
bookworm (security)	6.1.158-1 fixed
bullseye	5.10.223-1 fixed
bullseye (security)	5.10.247-1 fixed
forky	6.17.13-1 fixed
sid	6.17.13-1 fixed
trixie	6.12.57-1 fixed
trixie (security)	6.12.48-1 fixed

openSUSE / SLES Releases

openSUSE Product

Release

cluster-md-kmp-default

suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed

dlm-kmp-default

suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed

gfs2-kmp-default

suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed

kernel-64kb

suse enterprise desktop 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.28.1 fixed

kernel-azure

suse enterprise sap 15 SP7	6.4.0-150700.20.24.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.20.24.1 fixed

kernel-default

suse enterprise desktop 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.28.1 fixed

kernel-default-base

suse enterprise desktop 15 SP7	6.4.0-150700.53.28.1.150700.17.19.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.28.1.150700.17.19.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.133.1.150500.6.65.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1.150600.12.38.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.28.1.150700.17.19.1 fixed

kernel-docs

suse enterprise desktop 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.28.1 fixed

kernel-macros

suse enterprise desktop 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.28.1 fixed

kernel-obs-build

suse enterprise desktop 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.28.1 fixed

kernel-source

suse enterprise desktop 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.28.1 fixed

kernel-source-azure

suse enterprise sap 15 SP7	6.4.0-150700.20.24.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.20.24.1 fixed

kernel-syms

suse enterprise desktop 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.28.1 fixed

kernel-syms-azure

suse enterprise sap 15 SP7	6.4.0-150700.20.24.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.20.24.1 fixed

kernel-zfcpdump

suse enterprise desktop 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise sap 15 SP7	6.4.0-150700.53.28.1 fixed
suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed
suse enterprise server 15 SP7	6.4.0-150700.53.28.1 fixed

ocfs2-kmp-default

suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed

reiserfs-kmp-default

suse enterprise server 15 SP5	5.14.21-150500.55.133.1 fixed
suse enterprise server 15 SP6	6.4.0-150600.23.84.1 fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

bpftool

RHEL 9

0:7.4.0-503.11.1.el9_5

fixed

kernel

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-debug

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-debug-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-debug-devel

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-debug-devel-matched

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-debug-modules

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-debug-modules-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-debug-modules-extra

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-devel

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-devel-matched

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-modules

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-modules-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-64k-modules-extra

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-abi-stablelists

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-debug

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-debug-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-debug-devel

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-debug-devel-matched

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-debug-modules

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-debug-modules-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-debug-modules-extra

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-debug-uki-virt

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-devel

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-devel-matched

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-doc

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-modules

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-modules-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-modules-extra

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-debug

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-debug-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-debug-devel

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-debug-kvm

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-debug-modules

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-debug-modules-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-debug-modules-extra

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-devel

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-kvm

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-modules

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-modules-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-rt-modules-extra

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-tools

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-tools-libs

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-tools-libs-devel

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-uki-virt

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-uki-virt-addons

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-zfcpdump

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-zfcpdump-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-zfcpdump-devel

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-zfcpdump-devel-matched

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-zfcpdump-modules

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-zfcpdump-modules-core

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

kernel-zfcpdump-modules-extra

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

libperf

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

perf

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

python3-perf

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

rtla

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

RHEL 9

0:5.14.0-503.11.1.el9_5

fixed

References

https://git.kernel.org/stable/c/2935443dc9c28499223d8c881474259e4b998f2a

https://git.kernel.org/stable/c/3c5e8e666794d7dde6d14ea846c6c04f2bb34900

https://git.kernel.org/stable/c/4c8568cf4c45b415854195c8832b557cdefba57a

https://git.kernel.org/stable/c/953c54dfdc5d3eb7243ed902b50acb5ea1db4355

https://git.kernel.org/stable/c/eac030b22ea12cdfcbb2e941c21c03964403c63f

https://git.kernel.org/stable/c/f45ee5c074013a0fbfce77a5af5efddb01f5d4f4