- CVE ID
- CVE-2023-54309
- CWE
- N/A
- CVE Description
- In the Linux kernel, the following vulnerability has been resolved:
tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation
/dev/vtpmx is made visible before 'workqueue' is initialized, which can
lead to a memory corruption in the worst case scenario.
Address this by initializing 'workqueue' as the very first step of the
driver initialization.
- Published
- Dec 31, 2025
- CVSS Score & Severity
4.9Medium
- CVSS Vector
- CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:H/SI:H/SA:H
- EPSS Score
- 0.036%
- KEV Status
Not in KEV Catalog: No known exploits
- Source
- National Vulnerability Database
