CVE-2023-53426

EPSS 0.02%
Published 18.09.2025 16:15:46
Last modified 19.09.2025 16:00:27
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

xsk: Fix xsk_diag use-after-free error during socket cleanup

Fix a use-after-free error that is possible if the xsk_diag interface
is used after the socket has been unbound from the device. This can
happen either due to the socket being closed or the device
disappearing. In the early days of AF_XDP, the way we tested that a
socket was not bound to a device was to simply check if the netdevice
pointer in the xsk socket structure was NULL. Later, a better system
was introduced by having an explicit state variable in the xsk socket
struct. For example, the state of a socket that is on the way to being
closed and has been unbound from the device is XSK_UNBOUND.

The commit in the Fixes tag below deleted the old way of signalling
that a socket is unbound, setting dev to NULL. This in the belief that
all code using the old way had been exterminated. That was
unfortunately not true as the xsk diagnostics code was still using the
old way and thus does not work as intended when a socket is going
down. Fix this by introducing a test against the state variable. If
the socket is in the state XSK_UNBOUND, simply abort the diagnostic's
netlink operation.

Affected products Warnungen 0 Metrics 1 CWE 0 References 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorLinux

≫

Product Linux

Default Statusunaffected

Version < 5979985f2d6b565b6cf0f79a62670a2855c0e96c

Version ad7219cd8751bd258b9d1e69ae0654ec00f71875

Status affected

Version < 6436973164ea5506a495f39e56be5aea375e7832

Version 18b1ab7aa76bde181bdb1ab19a87fa9523c32f21

Status affected

Version < 595931912357fa3507e522a7f8a0a76e423c23e4

Version 18b1ab7aa76bde181bdb1ab19a87fa9523c32f21

Status affected

Version < 3e019d8a05a38abb5c85d4f1e85fda964610aa14

Version 18b1ab7aa76bde181bdb1ab19a87fa9523c32f21

Status affected

Version d1579253ffce39986e7a6ab757ac93b2680a665f

Status affected

Version 8a2dea162b92c322f3e42eae0c4a74b8d20aa7a9

Status affected

VendorLinux

≫

Product Linux

Default Statusaffected

Version 5.18

Status affected

Version < 5.18

Version 0

Status unaffected

Version <= 5.15.*

Version 5.15.132

Status unaffected

Version <= 6.1.*

Version 6.1.54

Status unaffected

Version <= 6.5.*

Version 6.5.4

Status unaffected

Version <= *

Version 6.6

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.02%	0.046

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string

https://git.kernel.org/stable/c/3e019d8a05a38abb5c85d4f1e85fda964610aa14

https://git.kernel.org/stable/c/595931912357fa3507e522a7f8a0a76e423c23e4

https://git.kernel.org/stable/c/5979985f2d6b565b6cf0f79a62670a2855c0e96c

https://git.kernel.org/stable/c/6436973164ea5506a495f39e56be5aea375e7832

https://nvd.nist.gov/vuln/detail/CVE-2023-53426

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53426

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53426

EUVD