CVE-2023-53530 [Medium] | Security Vulnerability in Linux Kernel

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id() The following call trace was observed: localhost kernel: nvme nvme0: NVME-FC{0}: controller connect complete localhost kernel: BUG: using smp_processor_id() in preemptible [00000000] code: kworker/u129:4/75092 localhost kernel: nvme nvme0: NVME-FC{0}: new ctrl: NQN "nqn.1992-08.com.netapp:sn.b42d198afb4d11ecad6d00a098d6abfa:subsystem.PR_Channel2022_RH84_subsystem_291" localhost kernel: caller is qla_nvme_post_cmd+0x216/0x1380 [qla2xxx] localhost kernel: CPU: 6 PID: 75092 Comm: kworker/u129:4 Kdump: loaded Tainted: G B W OE --------- --- 5.14.0-70.22.1.el9_0.x86_64+debug #1 localhost kernel: Hardware name: HPE ProLiant XL420 Gen10/ProLiant XL420 Gen10, BIOS U39 01/13/2022 localhost kernel: Workqueue: nvme-wq nvme_async_event_work [nvme_core] localhost kernel: Call Trace: localhost kernel: dump_stack_lvl+0x57/0x7d localhost kernel: check_preemption_disabled+0xc8/0xd0 localhost kernel: qla_nvme_post_cmd+0x216/0x1380 [qla2xxx] Use raw_smp_processor_id() instead of smp_processor_id(). Also use queue_work() across the driver instead of queue_work_on() thus avoiding usage of smp_processor_id() when CONFIG_DEBUG_PREEMPT is enabled.

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-10-01	—	0.02%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2025-10-01

—

0.02%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
5.5	3.1	MEDIUM	`CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H` Click to expand Attack vector (AV:L) They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by. Attack complexity (AC:L) Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup. Privileges required (PR:L) A normal user session is enough; they don’t have to be admin. User interaction (UI:N) Nobody has to click “OK” or open a trap file; it can work without a victim helping. Scope (S:U) Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems. Confidentiality (C:N) Doesn’t really leak secrets in a meaningful way. Integrity (I:N) Data isn’t meaningfully altered or forged. Availability (A:H) Could take the service down hard or make it unusable for people who depend on it.	1.8	3.6	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

5.5

3.1

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Click to expand

Attack vector (AV:L): They already need access on the box, or another person has to do something wrong; it’s not a remote drive-by.
Attack complexity (AC:L): Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:L): A normal user session is enough; they don’t have to be admin.
User interaction (UI:N): Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U): Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:N): Doesn’t really leak secrets in a meaningful way.
Integrity (I:N): Data isn’t meaningfully altered or forged.
Availability (A:H): Could take the service down hard or make it unusable for people who depend on it.

1.8

3.6

[email protected]

OS Trackers for CVE-2023-53530

vendor	priority	summary	link
`debian`	unimportant	CVE-2023-53530 unimportant priority: Debian including 1 source packages (linux), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.	https://security-tracker.debian.org/tracker/CVE-2023-53530
`redhat`	medium	—	https://access.redhat.com/security/cve/CVE-2023-53530
`suse`	medium	—	https://www.suse.com/security/cve/CVE-2023-53530/
`ubuntu`	medium	CVE-2023-53530 medium priority: Ubuntu including 158 source packages (linux, linux-allwinner-5.19, …), 1414 status rows across 9 suites (bionic, focal, jammy, noble, plucky, questing, trusty, upstream, xenial): DNE 1017, ignored 162, released 119, not-affected 71, needed 42, needs-triage 3.	https://ubuntu.com/security/CVE-2023-53530

Affected software / configurations for CVE-2023-53530

Vendor	Product	Version	Raw CPE
linux	linux_kernel	>= 6.3, < 6.5.5	cpe:2.3:o:linux:linux_kernel::::::::
linux	linux_kernel	6.6	cpe:2.3:o:linux:linux_kernel:6.6:rc1::::::

References for CVE-2023-53530

URL	Tags
https://git.kernel.org/stable/c/1a541999f31fcb10ea50eba2a563e6c451fd5c7d	Patch
https://git.kernel.org/stable/c/25bd0c7def04a272f8e89b36971712fe29c6e438	Patch
https://git.kernel.org/stable/c/52c7b41ad6ee53222f4ee2f0c099a6ed8291a168	Patch
https://git.kernel.org/stable/c/59f10a05b5c7b675256a66e3161741239889ff80	Patch

URL

CVE-2023-53530 | scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id()

Exploit prediction scoring system (EPSS) score for CVE-2023-53530

Common vulnerability scoring system (CVSS) metrics for CVE-2023-53530

Weakness enumeration for CVE-2023-53530

OS Trackers for CVE-2023-53530

Affected software / configurations for CVE-2023-53530

References for CVE-2023-53530