In the Linux kernel, the following vulnerability has been resolved: tee: amdtee: fix race condition in amdtee_open_session There is a potential race condition in amdtee_open_session that may lead to use-after-free. For instance, in amdtee_open_session() after sess->sess_mask is set, and before setting: sess->session_info[i] = session_info; if amdtee_close_session() closes this same session, then 'sess' data structure will be released, causing kernel panic when 'sess' is accessed within amdtee_open_session(). The solution is to set the bit sess->sess_mask as the last step in amdtee_open_session().

Metrics

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Redhat
  • Enterprise Linux

No data.

Package CPE Advisory Released Date
Red Hat Enterprise Linux 9
kernel-0:5.14.0-427.13.1.el9_4 cpe:/a:redhat:enterprise_linux:9 RHSA-2024:2394 2024-04-30T00:00:00Z
kernel-0:5.14.0-427.13.1.el9_4 cpe:/o:redhat:enterprise_linux:9 RHSA-2024:2394 2024-04-30T00:00:00Z
References
Link Providers
https://git.kernel.org/stable/c/02b296978a2137d7128151c542e84dc96400bc00 cve-icon cve-icon
https://git.kernel.org/stable/c/a63cce9393e4e7dbc5af82dc87e68cb321cb1a78 cve-icon cve-icon
https://git.kernel.org/stable/c/b3ef9e6fe09f1a132af28c623edcf4d4f39d9f35 cve-icon cve-icon
https://git.kernel.org/stable/c/f632a90f8e39db39b322107b9a8d438b826a7f4f cve-icon cve-icon
https://git.kernel.org/stable/c/f8502fba45bd30e1a6a354d9d898bc99d1a11e6d cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025050204-CVE-2023-53047-7e31@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53047 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53047 cve-icon
History

Fri, 20 Jun 2025 02:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-826
Metrics cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

 cvssV3_1

{'score': 7.0, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Thu, 19 Jun 2025 06:45:00 +0000

Type Values Removed Values Added
First Time appeared Redhat
Redhat enterprise Linux
CPEs cpe:/a:redhat:enterprise_linux:9
cpe:/o:redhat:enterprise_linux:9
Vendors & Products Redhat
Redhat enterprise Linux

Mon, 05 May 2025 14:00:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

 cvssV3_1

{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

threat_severity

Moderate

Fri, 02 May 2025 16:00:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: tee: amdtee: fix race condition in amdtee_open_session There is a potential race condition in amdtee_open_session that may lead to use-after-free. For instance, in amdtee_open_session() after sess->sess_mask is set, and before setting: sess->session_info[i] = session_info; if amdtee_close_session() closes this same session, then 'sess' data structure will be released, causing kernel panic when 'sess' is accessed within amdtee_open_session(). The solution is to set the bit sess->sess_mask as the last step in amdtee_open_session().
Title tee: amdtee: fix race condition in amdtee_open_session
References
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-05-02T15:55:04.071Z

Updated: 2025-05-04T07:48:32.190Z

Reserved: 2025-04-16T07:18:43.828Z

Link: CVE-2023-53047

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-05-02T16:15:23.790

Modified: 2025-05-05T20:54:45.973

Link: CVE-2023-53047

cve-icon Redhat

Severity : Moderate

Publid Date: 2025-05-02T00:00:00Z

Links: CVE-2023-53047 - Bugzilla