CVE-2023-53519

low-risk

Published 2025-10-01

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-mem2mem: add lock to protect parameter num_rdy Getting below error when using KCSAN to check the driver. Adding lock to protect parameter num_rdy when getting the value with function: v4l2_m2m_num_src_bufs_ready/v4l2_m2m_num_dst_bufs_ready. kworker/u16:3: [name:report&]BUG: KCSAN: data-race in v4l2_m2m_buf_queue kworker/u16:3: [name:report&] kworker/u16:3: [name:report&]read-write to 0xffffff8105f35b94 of 1 bytes by task 20865 on cpu 7: kworker/u16:3: v4l2_m2m_buf_queue+0xd8/0x10c

Do I need to act?

0.01% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.5/10 Medium

LOCAL / LOW complexity

Affected Products (1)

Linux Kernel

Affected Vendors

Linux

References (8)

Patch https://git.kernel.org/stable/c/1676748aa29099fc0abd71e0fb092e76e835f25c

Patch https://git.kernel.org/stable/c/56b5c3e67b0f9af3f45cf393be048ee8d8a92694

Patch https://git.kernel.org/stable/c/690dd4780b3f4d755e4e7883e8c3d1b5052f6bf2

Patch https://git.kernel.org/stable/c/7fc7f87725805197388ba749a1801df33000fa50

Patch https://git.kernel.org/stable/c/c71aa5f1cf961264690f2560503ea396b6e3c680

Patch https://git.kernel.org/stable/c/e01ea1c4191ee08440b5f86db98dff695e9cedf9

Patch https://git.kernel.org/stable/c/e52de26cb37459b16213438a2c82feb155dd3bbd

Patch https://git.kernel.org/stable/c/ef009fe2010ea2a3a7045ecb72729cf366e0967b

/ 100

low-risk

Severity 18/34 · Moderate

Exploitability 0/34 · Minimal

Exposure 5/34 · Minimal