Unrated severityNVD Advisory· Published Mar 2, 2024· Updated May 4, 2025
net: fix possible store tearing in neigh_periodic_work()
CVE-2023-52522
Description
In the Linux kernel, the following vulnerability has been resolved:
net: fix possible store tearing in neigh_periodic_work()
While looking at a related syzbot report involving neigh_periodic_work(), I found that I forgot to add an annotation when deleting an RCU protected item from a list.
Readers use rcu_deference(*np), we need to use either rcu_assign_pointer() or WRITE_ONCE() on writer side to prevent store tearing.
I use rcu_assign_pointer() to have lockdep support, this was the choice made in neigh_flush_dev().
Affected products
65- osv-coords64 versionspkg:rpm/almalinux/bpftoolpkg:rpm/almalinux/kernelpkg:rpm/almalinux/kernel-64kpkg:rpm/almalinux/kernel-64k-corepkg:rpm/almalinux/kernel-64k-debugpkg:rpm/almalinux/kernel-64k-debug-corepkg:rpm/almalinux/kernel-64k-debug-develpkg:rpm/almalinux/kernel-64k-debug-devel-matchedpkg:rpm/almalinux/kernel-64k-debug-modulespkg:rpm/almalinux/kernel-64k-debug-modules-corepkg:rpm/almalinux/kernel-64k-debug-modules-extrapkg:rpm/almalinux/kernel-64k-develpkg:rpm/almalinux/kernel-64k-devel-matchedpkg:rpm/almalinux/kernel-64k-modulespkg:rpm/almalinux/kernel-64k-modules-corepkg:rpm/almalinux/kernel-64k-modules-extrapkg:rpm/almalinux/kernel-abi-stablelistspkg:rpm/almalinux/kernel-corepkg:rpm/almalinux/kernel-cross-headerspkg:rpm/almalinux/kernel-debugpkg:rpm/almalinux/kernel-debug-corepkg:rpm/almalinux/kernel-debug-develpkg:rpm/almalinux/kernel-debug-devel-matchedpkg:rpm/almalinux/kernel-debug-modulespkg:rpm/almalinux/kernel-debug-modules-corepkg:rpm/almalinux/kernel-debug-modules-extrapkg:rpm/almalinux/kernel-debug-uki-virtpkg:rpm/almalinux/kernel-develpkg:rpm/almalinux/kernel-devel-matchedpkg:rpm/almalinux/kernel-docpkg:rpm/almalinux/kernel-headerspkg:rpm/almalinux/kernel-modulespkg:rpm/almalinux/kernel-modules-corepkg:rpm/almalinux/kernel-modules-extrapkg:rpm/almalinux/kernel-rtpkg:rpm/almalinux/kernel-rt-corepkg:rpm/almalinux/kernel-rt-debugpkg:rpm/almalinux/kernel-rt-debug-corepkg:rpm/almalinux/kernel-rt-debug-develpkg:rpm/almalinux/kernel-rt-debug-kvmpkg:rpm/almalinux/kernel-rt-debug-modulespkg:rpm/almalinux/kernel-rt-debug-modules-corepkg:rpm/almalinux/kernel-rt-debug-modules-extrapkg:rpm/almalinux/kernel-rt-develpkg:rpm/almalinux/kernel-rt-kvmpkg:rpm/almalinux/kernel-rt-modulespkg:rpm/almalinux/kernel-rt-modules-corepkg:rpm/almalinux/kernel-rt-modules-extrapkg:rpm/almalinux/kernel-toolspkg:rpm/almalinux/kernel-tools-libspkg:rpm/almalinux/kernel-tools-libs-develpkg:rpm/almalinux/kernel-uki-virtpkg:rpm/almalinux/kernel-zfcpdumppkg:rpm/almalinux/kernel-zfcpdump-corepkg:rpm/almalinux/kernel-zfcpdump-develpkg:rpm/almalinux/kernel-zfcpdump-devel-matchedpkg:rpm/almalinux/kernel-zfcpdump-modulespkg:rpm/almalinux/kernel-zfcpdump-modules-corepkg:rpm/almalinux/kernel-zfcpdump-modules-extrapkg:rpm/almalinux/libperfpkg:rpm/almalinux/perfpkg:rpm/almalinux/python3-perfpkg:rpm/almalinux/rtlapkg:rpm/almalinux/rv
< 7.3.0-427.13.1.el9_4+ 63 more
- (no CPE)range: < 7.3.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 4.18.0-553.22.1.rt7.363.el8_10
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 4.18.0-553.22.1.rt7.363.el8_10
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
- (no CPE)range: < 5.14.0-427.13.1.el9_4
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- git.kernel.org/stable/c/147d89ee41434b97043c2dcb17a97dc151859baamitre
- git.kernel.org/stable/c/25563b581ba3a1f263a00e8c9a97f5e7363be6fdmitre
- git.kernel.org/stable/c/2ea52a2fb8e87067e26bbab4efb8872639240eb0mitre
- git.kernel.org/stable/c/95eabb075a5902f4c0834ab1fb12dc35730c05afmitre
- git.kernel.org/stable/c/a75152d233370362eebedb2643592e7c883cc9fcmitre
- git.kernel.org/stable/c/f82aac8162871e87027692b36af335a2375d4580mitre
News mentions
0No linked articles in our index yet.