CVE-2023-53047

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> tee: amdtee: fix race condition in amdtee_open_session<br /> <br /> There is a potential race condition in amdtee_open_session that may<br /> lead to use-after-free. For instance, in amdtee_open_session() after<br /> sess-&gt;sess_mask is set, and before setting:<br /> <br /> sess-&gt;session_info[i] = session_info;<br /> <br /> if amdtee_close_session() closes this same session, then &amp;#39;sess&amp;#39; data<br /> structure will be released, causing kernel panic when &amp;#39;sess&amp;#39; is<br /> accessed within amdtee_open_session().<br /> <br /> The solution is to set the bit sess-&gt;sess_mask as the last step in<br /> amdtee_open_session().