-

CVE-2023-53373

EPSS 0.03%
Veröffentlicht 18.09.2025 13:33:20
Zuletzt bearbeitet 19.09.2025 16:00:27
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

crypto: seqiv - Handle EBUSY correctly

As it is seqiv only handles the special return value of EINPROGERSS,
which means that in all other cases it will free data related to the
request.

However, as the caller of seqiv may specify MAY_BACKLOG, we also need
to expect EBUSY and treat it in the same way.  Otherwise backlogged
requests will trigger a use-after-free.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < cc4d0d4251748a8a68026938f4055d2ac47c5719

Version 0a270321dbf948963aeb0e8382fe17d2c2eb3771

Status affected

Version < 1effbddaff60eeef8017c6dea1ee0ed970164d14

Version 0a270321dbf948963aeb0e8382fe17d2c2eb3771

Status affected

Version < 63551e4b7cbcd9914258827699eb2cb6ed6e4a16

Version 0a270321dbf948963aeb0e8382fe17d2c2eb3771

Status affected

Version < ae849d2f48019ff9c104e32bf588ccbfb200e971

Version 0a270321dbf948963aeb0e8382fe17d2c2eb3771

Status affected

Version < 36ec108b7bd7e280edb22de028467bd09d644620

Version 0a270321dbf948963aeb0e8382fe17d2c2eb3771

Status affected

Version < 4d497e8b200a175094e0ac252ed878add39b8771

Version 0a270321dbf948963aeb0e8382fe17d2c2eb3771

Status affected

Version < 9477db935eb690f697d9bcc4f608927841bc8b36

Version 0a270321dbf948963aeb0e8382fe17d2c2eb3771

Status affected

Version < 32e62025e5e52fbe4812ef044759de7010b15dbc

Version 0a270321dbf948963aeb0e8382fe17d2c2eb3771

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 2.6.25

Status affected

Version < 2.6.25

Version 0

Status unaffected

Version <= 4.14.*

Version 4.14.308

Status unaffected

Version <= 4.19.*

Version 4.19.276

Status unaffected

Version <= 5.4.*

Version 5.4.235

Status unaffected

Version <= 5.10.*

Version 5.10.173

Status unaffected

Version <= 5.15.*

Version 5.15.99

Status unaffected

Version <= 6.1.*

Version 6.1.16

Status unaffected

Version <= 6.2.*

Version 6.2.3

Status unaffected

Version <= *

Version 6.3

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.078

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/cc4d0d4251748a8a68026938f4055d2ac47c5719

https://git.kernel.org/stable/c/1effbddaff60eeef8017c6dea1ee0ed970164d14

https://git.kernel.org/stable/c/63551e4b7cbcd9914258827699eb2cb6ed6e4a16

https://git.kernel.org/stable/c/ae849d2f48019ff9c104e32bf588ccbfb200e971

https://git.kernel.org/stable/c/36ec108b7bd7e280edb22de028467bd09d644620

https://git.kernel.org/stable/c/4d497e8b200a175094e0ac252ed878add39b8771

https://git.kernel.org/stable/c/9477db935eb690f697d9bcc4f608927841bc8b36

https://git.kernel.org/stable/c/32e62025e5e52fbe4812ef044759de7010b15dbc

https://nvd.nist.gov/vuln/detail/CVE-2023-53373

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53373

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53373

EUVD