What is CVE-2023-54048?

CVE-2023-54048 is a unscored severity Linux kernel vulnerability, affecting Linux kernel versions from 4.11 onward and patched in 5.15.124, 6.1.43, 6.4.8 and others. CVE-2023-54048 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2023-54048?

CVE-2023-54048 has a CVSS score of pending NVD analysis out of 10, rated awaiting scoring severity.

Is there a patch available for CVE-2023-54048?

Yes, CVE-2023-54048 has been patched. Fixed versions include 5.15.124, 6.1.43, 6.4.8 and others. If you are running Linux kernel 4.11 or later up to the fix versions, apply the relevant patch for your kernel branch.

Is CVE-2023-54048 actively exploited?

CVE-2023-54048 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2023-54048

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Prevent handling any completions after qp destroy HW may generate completions that indicates QP is destroyed. Driver should not be scheduling any more completion handlers for this QP, after the QP is destroyed. Since CQs are active during the QP destroy, driver may still schedule completion handlers. This can cause a race where the destroy_cq and poll_cq running simultaneously. Snippet of kernel panic while doing bnxt_re driver load unload in loop. This indicates a poll after the CQ is freed. [77786.481636] Call Trace: [77786.481640] <TASK> [77786.481644] bnxt_re_poll_cq+0x14a/0x620 [bnxt_re] [77786.481658] ? kvm_clock_read+0x14/0x30 [77786.481693] __ib_process_cq+0x57/0x190 [ib_core] [77786.481728] ib_cq_poll_work+0x26/0x80 [ib_core] [77786.481761] process_one_work+0x1e5/0x3f0 [77786.481768] worker_thread+0x50/0x3a0 [77786.481785] ? __pfx_worker_thread+0x10/0x10 [77786.481790] kthread+0xe2/0x110 [77786.481794] ? __pfx_kthread+0x10/0x10 [77786.481797] ret_from_fork+0x2c/0x50 To avoid this, complete all completion handlers before returning the destroy QP. If free_cq is called soon after destroy_qp, IB stack will cancel the CQ work before invoking the destroy_cq verb and this will prevent any race mentioned.

Package Linux Kernel

Published 2025-12-24

Last modified 2026-04-15

Patch available

Yes

Affected versions

Linux kernel versions 4.11 and later are affected. Fixed in 5.15.124, 6.1.43, 6.4.8, 6.5 and their respective stable series.

Affected from

≥ 4.11

Fixed in

✓ 5.15.124 5.15.x ✓ 6.1.43 6.1.x ✓ 6.4.8 6.4.x ✓ 6.5

References

The following references provide additional information about CVE-2023-54048 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Kernel patch commit
https://git.kernel.org/stable/c/7faa6097694164380ed19600c7a7993d071270b9
Patch
Kernel patch commit
https://git.kernel.org/stable/c/b5bbc6551297447d3cca55cf907079e206e9cd82
Patch
Kernel patch commit
https://git.kernel.org/stable/c/b79a0e71d6e8692e0b6da05f8aaa7d69191cf7e7
Patch

4 patch commits total View all on NVD

Frequently asked questions

What is CVE-2023-54048?

CVE-2023-54048 is a unscored severity Linux kernel vulnerability . It affects Linux kernel versions from 4.11 onward and has been patched in 5.15.124, 6.1.43, 6.4.8 and others. CVE-2023-54048 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
Is there a patch available for CVE-2023-54048?

Yes — CVE-2023-54048 has been patched. Fixed versions include 5.15.124, 6.1.43, 6.4.8 and others. If you are running Linux kernel 4.11 or later up to the fix versions, apply the relevant patch for your kernel branch.
Is CVE-2023-54048 actively exploited?

No — CVE-2023-54048 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.