CVE-2023-53759

Dec. 8, 2025, 6:26 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: HID: hidraw: fix data race on device refcount The hidraw_open() function increments the hidraw device reference counter. The counter has no dedicated synchronization mechanism, resulting in a potential data race when concurrently opening a device. The race is a regression introduced by commit 8590222e4b02 ("HID: hidraw: Replace hidraw device table mutex with a rwsem"). While minors_rwsem is intended to protect the hidraw_table itself, by instead acquiring the lock for writing, the reference counter is also protected. This is symmetrical to hidraw_release().

Product(s) Impacted

Product Versions
linux_kernel
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/05b47034e2488c2924e5c032e20a1979d012b5b5
https://git.kernel.org/stable/c/879e79c3aead41b8aa2e91164354b30bd1c4ef3b
https://git.kernel.org/stable/c/944ee77dc6ec7b0afd8ec70ffc418b238c92f12b
https://git.kernel.org/stable/c/ff348eabd97577da974d3db7038857f28c61d2bd

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-12-08
CVE-2023-53759

Timeline

Published: Dec. 8, 2025, 2:15 a.m.
Last Modified: Dec. 8, 2025, 6:26 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.