CVE-2023-53426

EPSS 0.02%
Veröffentlicht 18.09.2025 16:15:46
Zuletzt bearbeitet 11.12.2025 14:18:15
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

xsk: Fix xsk_diag use-after-free error during socket cleanup

Fix a use-after-free error that is possible if the xsk_diag interface
is used after the socket has been unbound from the device. This can
happen either due to the socket being closed or the device
disappearing. In the early days of AF_XDP, the way we tested that a
socket was not bound to a device was to simply check if the netdevice
pointer in the xsk socket structure was NULL. Later, a better system
was introduced by having an explicit state variable in the xsk socket
struct. For example, the state of a socket that is on the way to being
closed and has been unbound from the device is XSK_UNBOUND.

The commit in the Fixes tag below deleted the old way of signalling
that a socket is unbound, setting dev to NULL. This in the belief that
all code using the old way had been exterminated. That was
unfortunately not true as the xsk diagnostics code was still using the
old way and thus does not work as intended when a socket is going
down. Fix this by introducing a test against the state variable. If
the socket is in the state XSK_UNBOUND, simply abort the diagnostic's
netlink operation.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 5.15.33 < 5.15.132

Linux ≫ Linux Kernel Version >= 5.16.19 < 5.17

Linux ≫ Linux Kernel Version >= 5.17.2 < 6.1.54

Linux ≫ Linux Kernel Version >= 6.2 < 6.5.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.037

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/3e019d8a05a38abb5c85d4f1e85fda964610aa14

Patch

https://git.kernel.org/stable/c/595931912357fa3507e522a7f8a0a76e423c23e4

Patch

https://git.kernel.org/stable/c/5979985f2d6b565b6cf0f79a62670a2855c0e96c

Patch

https://git.kernel.org/stable/c/6436973164ea5506a495f39e56be5aea375e7832

Patch

https://nvd.nist.gov/vuln/detail/CVE-2023-53426

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53426

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53426

EUVD