CVE-2023-53130 – Linux Kernel Block Device Exclusivity Leak

May 2, 2025

CVE ID : CVE-2023-53130

Published : May 2, 2025, 4:15 p.m. | 34 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

block: fix wrong mode for blkdev_put() from disk_scan_partitions()

If disk_scan_partitions() is called with ‘FMODE_EXCL’,
blkdev_get_by_dev() will be called without ‘FMODE_EXCL’, however, follow
blkdev_put() is still called with ‘FMODE_EXCL’, which will cause
‘bd_holders’ counter to leak.

Fix the problem by using the right mode for blkdev_put().

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2023-53140 – “Linux Kernel SCSI Core /proc/scsi Directory Removal Vulnerability”

Next Article CVE-2023-53128 – “IBM Storage Media Initiator (MPI) 3.0.x Memory Leak Vulnerability”

Highlights

CVE-2024-38825 – Apache Salt PKI Authentication Bypass

June 13, 2025

CVE ID : CVE-2024-38825

Published : June 13, 2025, 7:15 a.m. | 2 hours, 49 minutes ago

Description : The salt.auth.pki module does not properly authenticate callers. The “password” field contains a public certificate which is validated against a CA certificate by the module. This is not pki authentication, as the caller does not need access to the corresponding private key for the authentication attempt to be accepted.

Severity: 6.4 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

IBM launches new integration to help unify AI security and governance

Meet Accessible UX Research, A Brand-New Smashing Book

Modernizing your approach to governance, risk and compliance

ScyllaDB X Cloud’s autoscaling capabilities meet the needs of unpredictable workloads in real time

RAIDOU Remastered: The Mystery of the Soulless Army Review (PC) – A well-done action-RPG remaster that makes me hopeful for more revivals of classic Atlus titles

With Windows 10 circling the drain, Windows 11 sees a long-overdue surge

This PC app boosts FPS in any game on any GPU for only $7 — and it just got a major update

Sam Altman claims Meta is trying to poach OpenAI staffers with $100 million bonuses, but “none of our best people have decided to take them up on that”

Why Inclusive Design Solutions Are important for Accessibility

Why Inclusive Design Solutions Are important for Accessibility

Microsoft Copilot for Power Platform

Integrate Coveo Atomic CLI-Based Hosted Search Page into Adobe Experience Manager (AEM)

RAIDOU Remastered: The Mystery of the Soulless Army Review (PC) – A well-done action-RPG remaster that makes me hopeful for more revivals of classic Atlus titles

RAIDOU Remastered: The Mystery of the Soulless Army Review (PC) – A well-done action-RPG remaster that makes me hopeful for more revivals of classic Atlus titles

With Windows 10 circling the drain, Windows 11 sees a long-overdue surge

This PC app boosts FPS in any game on any GPU for only $7 — and it just got a major update

CVE-2023-53130 – Linux Kernel Block Device Exclusivity Leak

CISA Flags CVE-2023-0386 as Actively Exploited Linux Kernel Privilege Escalation Threat

Critical Auth Bypass Vulnerability (CVE-2025-51381) Found in KAON KCM3100 Gateways

CVE-2025-3919 – WordPress Comments Import & Export Plugin Unauthenticated Cross-Site Scripting (XSS) Vulnerability

Learning how to predict rare kinds of failures

CVE-2025-3841 – Wix Incubator Jam Jinja2 Template Handler Template Injection Vulnerability

Microsoft Copilot gets ChatGPT-like viral image generator

CVE-2024-38825 – Apache Salt PKI Authentication Bypass

CVE-2025-5520 – Open5GS AMF/MME Reachable Assertion Vulnerability

Enabling Subscriptions in Shopify

CVE-2025-47268 – iputils Ping Denial of Service (DoS) Vulnerability

CVE-2023-53130 – Linux Kernel Block Device Exclusivity Leak

Related Posts