FKIE_CVE-2023-54244
Vulnerability from fkie_nvd - Published: 2025-12-30 13:16 - Updated: 2026-06-17 06:47
Severity ?
Summary
In the Linux kernel, the following vulnerability has been resolved:
ACPI: EC: Fix oops when removing custom query handlers
When removing custom query handlers, the handler might still
be used inside the EC query workqueue, causing a kernel oops
if the module holding the callback function was already unloaded.
Fix this by flushing the EC query workqueue when removing
custom query handlers.
Tested on a Acer Travelmate 4002WLMi
References
Impacted products
| Vendor | Product | Version |
|---|
{
"affected": [
{
"affectedData": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"drivers/acpi/ec.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "130e3eac51912f2c866e7d035992ede25f8feac0",
"status": "affected",
"version": "a62e8f1978f49e52f87a711ff6711b323d4b12ff",
"versionType": "git"
},
{
"lessThan": "0d528a7c421b1f1772fc1d29370b3b5fc0f42b19",
"status": "affected",
"version": "a62e8f1978f49e52f87a711ff6711b323d4b12ff",
"versionType": "git"
},
{
"lessThan": "ccae2233e9935a038a35fe8cfd703df905f700e7",
"status": "affected",
"version": "a62e8f1978f49e52f87a711ff6711b323d4b12ff",
"versionType": "git"
},
{
"lessThan": "066b90bca755f0b876e7b027b75d1796861d6db0",
"status": "affected",
"version": "a62e8f1978f49e52f87a711ff6711b323d4b12ff",
"versionType": "git"
},
{
"lessThan": "f4a573eed6377d356f835a4b00099d5dacee0da0",
"status": "affected",
"version": "a62e8f1978f49e52f87a711ff6711b323d4b12ff",
"versionType": "git"
},
{
"lessThan": "86a159fd5bdb01ec34b160cfda1a313b616d9302",
"status": "affected",
"version": "a62e8f1978f49e52f87a711ff6711b323d4b12ff",
"versionType": "git"
},
{
"lessThan": "fd2c99e81ae0dbdd62a154ef9c77fc01715cc020",
"status": "affected",
"version": "a62e8f1978f49e52f87a711ff6711b323d4b12ff",
"versionType": "git"
},
{
"lessThan": "e5b492c6bb900fcf9722e05f4a10924410e170c1",
"status": "affected",
"version": "a62e8f1978f49e52f87a711ff6711b323d4b12ff",
"versionType": "git"
},
{
"status": "affected",
"version": "1ff7b99e4983d9e93d25e98ba1ce303ad4e4909e",
"versionType": "git"
},
{
"lessThan": "2.6.33",
"status": "affected",
"version": "2.6.32.6",
"versionType": "semver"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"drivers/acpi/ec.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "2.6.33"
},
{
"lessThan": "2.6.33",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "4.14.*",
"status": "unaffected",
"version": "4.14.316",
"versionType": "semver"
},
{
"lessThanOrEqual": "4.19.*",
"status": "unaffected",
"version": "4.19.284",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.4.*",
"status": "unaffected",
"version": "5.4.244",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"version": "5.10.181",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"version": "5.15.113",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"version": "6.1.30",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.3.*",
"status": "unaffected",
"version": "6.3.4",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "6.4",
"versionType": "original_commit_for_fix"
}
]
}
],
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nACPI: EC: Fix oops when removing custom query handlers\n\nWhen removing custom query handlers, the handler might still\nbe used inside the EC query workqueue, causing a kernel oops\nif the module holding the callback function was already unloaded.\n\nFix this by flushing the EC query workqueue when removing\ncustom query handlers.\n\nTested on a Acer Travelmate 4002WLMi"
},
{
"lang": "es",
"value": "En el kernel de Linux, la siguiente vulnerabilidad ha sido resuelta:\n\nACPI: EC: Correcci\u00f3n de oops al eliminar controladores de consulta personalizados\n\nAl eliminar controladores de consulta personalizados, el controlador a\u00fan podr\u00eda estar siendo utilizado dentro de la cola de trabajo de consulta de EC, causando un oops del kernel si el m\u00f3dulo que conten\u00eda la funci\u00f3n de devoluci\u00f3n de llamada ya hab\u00eda sido descargado.\n\nSolucione esto al vaciar la cola de trabajo de consulta de EC al eliminar controladores de consulta personalizados.\n\nProbado en un Acer Travelmate 4002WLMi"
}
],
"id": "CVE-2023-54244",
"lastModified": "2026-06-17T06:47:04.960",
"metrics": {},
"published": "2025-12-30T13:16:12.993",
"references": [
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/066b90bca755f0b876e7b027b75d1796861d6db0"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/0d528a7c421b1f1772fc1d29370b3b5fc0f42b19"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/130e3eac51912f2c866e7d035992ede25f8feac0"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/86a159fd5bdb01ec34b160cfda1a313b616d9302"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/ccae2233e9935a038a35fe8cfd703df905f700e7"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/e5b492c6bb900fcf9722e05f4a10924410e170c1"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/f4a573eed6377d356f835a4b00099d5dacee0da0"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"url": "https://git.kernel.org/stable/c/fd2c99e81ae0dbdd62a154ef9c77fc01715cc020"
}
],
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"vulnStatus": "Deferred"
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…