{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2023-54309","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-12-30T12:06:44.530Z","datePublished":"2025-12-30T12:23:41.834Z","dateUpdated":"2026-05-11T19:59:28.525Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T19:59:28.525Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\ntpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation\n\n/dev/vtpmx is made visible before 'workqueue' is initialized, which can\nlead to a memory corruption in the worst case scenario.\n\nAddress this by initializing 'workqueue' as the very first step of the\ndriver initialization."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/char/tpm/tpm_vtpm_proxy.c"],"versions":[{"version":"6f99612e250041a2402d3b1694bccb149cd424a4","lessThan":"509d21f1c4bb9d35d397fca3226165b156a7639f","status":"affected","versionType":"git"},{"version":"6f99612e250041a2402d3b1694bccb149cd424a4","lessThan":"04e8697d26613ccea760cf57eb20a5a27f788c0f","status":"affected","versionType":"git"},{"version":"6f99612e250041a2402d3b1694bccb149cd424a4","lessThan":"86b9820395f226b8f33cbae9599deebf8af1ce72","status":"affected","versionType":"git"},{"version":"6f99612e250041a2402d3b1694bccb149cd424a4","lessThan":"9ff7fcb3a2ed0e9b895bb5b4c13872d584a8815b","status":"affected","versionType":"git"},{"version":"6f99612e250041a2402d3b1694bccb149cd424a4","lessThan":"e08295290c53a3cf174c236721747a01b9550ae2","status":"affected","versionType":"git"},{"version":"6f99612e250041a2402d3b1694bccb149cd424a4","lessThan":"99b998fb9d7d2d2d9dbb3e19db2d0ade02f5a604","status":"affected","versionType":"git"},{"version":"6f99612e250041a2402d3b1694bccb149cd424a4","lessThan":"092db954e2c3c5ba6c0ce990c7da72cf8f3b9c51","status":"affected","versionType":"git"},{"version":"6f99612e250041a2402d3b1694bccb149cd424a4","lessThan":"f4032d615f90970d6c3ac1d9c0bce3351eb4445c","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/char/tpm/tpm_vtpm_proxy.c"],"versions":[{"version":"4.8","status":"affected"},{"version":"0","lessThan":"4.8","status":"unaffected","versionType":"semver"},{"version":"4.14.322","lessThanOrEqual":"4.14.*","status":"unaffected","versionType":"semver"},{"version":"4.19.291","lessThanOrEqual":"4.19.*","status":"unaffected","versionType":"semver"},{"version":"5.4.251","lessThanOrEqual":"5.4.*","status":"unaffected","versionType":"semver"},{"version":"5.10.188","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.121","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.40","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.4.5","lessThanOrEqual":"6.4.*","status":"unaffected","versionType":"semver"},{"version":"6.5","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"4.14.322"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"4.19.291"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"5.4.251"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"5.10.188"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"5.15.121"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"6.1.40"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"6.4.5"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"4.8","versionEndExcluding":"6.5"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/509d21f1c4bb9d35d397fca3226165b156a7639f"},{"url":"https://git.kernel.org/stable/c/04e8697d26613ccea760cf57eb20a5a27f788c0f"},{"url":"https://git.kernel.org/stable/c/86b9820395f226b8f33cbae9599deebf8af1ce72"},{"url":"https://git.kernel.org/stable/c/9ff7fcb3a2ed0e9b895bb5b4c13872d584a8815b"},{"url":"https://git.kernel.org/stable/c/e08295290c53a3cf174c236721747a01b9550ae2"},{"url":"https://git.kernel.org/stable/c/99b998fb9d7d2d2d9dbb3e19db2d0ade02f5a604"},{"url":"https://git.kernel.org/stable/c/092db954e2c3c5ba6c0ce990c7da72cf8f3b9c51"},{"url":"https://git.kernel.org/stable/c/f4032d615f90970d6c3ac1d9c0bce3351eb4445c"}],"title":"tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation","x_generator":{"engine":"bippy-1.2.0"}}}}