CVE-2023-54256 - Vulnerability Details

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

References

No reference.

History

Tue, 30 Dec 2025 14:30:00 +0000

Type	Values Removed	Values Added
References	https://git.kernel.org/stable/c/317d6e4c12b46bde61248ea4ab5e19f68cbd1c57 https://git.kernel.org/stable/c/6366b1178545e0a29f69845938153aa3c7aa603b https://git.kernel.org/stable/c/640cb5f5e4b41fe050519e108d7505a5fd2124c9 https://git.kernel.org/stable/c/96c433aff5fd427fde29aba18dbec3df60e8c538 https://git.kernel.org/stable/c/b4e909a46919a922da3e2f7983465370f40bdda4 https://git.kernel.org/stable/c/c1fad1695befef3c3ae5f185ed0f8f394b9962ae https://git.kernel.org/stable/c/e835c0a4e23c38531dcee5ef77e8d1cf462658c7

Tue, 30 Dec 2025 14:15:00 +0000

Type	Values Removed	Values Added
Description	In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: don't reset device side if dwc3 was configured as host-only Commit c4a5153e87fd ("usb: dwc3: core: Power-off core/PHYs on system_suspend in host mode") replaces check for HOST only dr_mode with current_dr_role. But during booting, the current_dr_role isn't initialized, thus the device side reset is always issued even if dwc3 was configured as host-only. What's more, on some platforms with host only dwc3, aways issuing device side reset by accessing device register block can cause kernel panic.	This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Title	usb: dwc3: don't reset device side if dwc3 was configured as host-only
CPEs	cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products	Linux Linux linux Kernel

Tue, 30 Dec 2025 12:30:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: don't reset device side if dwc3 was configured as host-only Commit c4a5153e87fd ("usb: dwc3: core: Power-off core/PHYs on system_suspend in host mode") replaces check for HOST only dr_mode with current_dr_role. But during booting, the current_dr_role isn't initialized, thus the device side reset is always issued even if dwc3 was configured as host-only. What's more, on some platforms with host only dwc3, aways issuing device side reset by accessing device register block can cause kernel panic.
Title		usb: dwc3: don't reset device side if dwc3 was configured as host-only
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/317d6e4c12b46bde61248ea4ab5e19f68cbd1c57 https://git.kernel.org/stable/c/6366b1178545e0a29f69845938153aa3c7aa603b https://git.kernel.org/stable/c/640cb5f5e4b41fe050519e108d7505a5fd2124c9 https://git.kernel.org/stable/c/96c433aff5fd427fde29aba18dbec3df60e8c538 https://git.kernel.org/stable/c/b4e909a46919a922da3e2f7983465370f40bdda4 https://git.kernel.org/stable/c/c1fad1695befef3c3ae5f185ed0f8f394b9962ae https://git.kernel.org/stable/c/e835c0a4e23c38531dcee5ef77e8d1cf462658c7

MITRE

Status: REJECTED

Assigner: Linux

Published: 2025-12-30T12:15:51.526Z

Updated: 2025-12-30T14:05:55.844Z

Reserved: 2025-12-30T12:06:44.515Z

Link: CVE-2023-54256

Vulnrichment

No data.

NVD

Status : Rejected

Published: 2025-12-30T13:16:14.330

Modified: 2025-12-30T14:15:52.533

Link: CVE-2023-54256

Redhat

No data.

OpenCVE Enrichment

No data.

Metrics