CVE-2023-53539

EPSS 0.02%
Published 04.10.2025 15:16:49
Last modified 06.10.2025 14:56:21
Source 416baaa9-dc9f-4396-8d5f-8c081f
Teams watchlist Login
Open Login

In the Linux kernel, the following vulnerability has been resolved:

RDMA/rxe: Fix incomplete state save in rxe_requester

If a send packet is dropped by the IP layer in rxe_requester()
the call to rxe_xmit_packet() can fail with err == -EAGAIN.
To recover, the state of the wqe is restored to the state before
the packet was sent so it can be resent. However, the routines
that save and restore the state miss a significnt part of the
variable state in the wqe, the dma struct which is used to process
through the sge table. And, the state is not saved before the packet
is built which modifies the dma struct.

Under heavy stress testing with many QPs on a fast node sending
large messages to a slow node dropped packets are observed and
the resent packets are corrupted because the dma struct was not
restored. This patch fixes this behavior and allows the test cases
to succeed.

Affected products Warnungen 0 Metrics 1 CWE 0 References 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorLinux

≫

Product Linux

Default Statusunaffected

Version < 70518f3aaf5a059b691867d7d2d46b999319656a

Version 3050b99850247695cb07a5c15265afcc08bcf400

Status affected

Version < 2f2a6422287fe29f9343247d77b645100ece0652

Version 3050b99850247695cb07a5c15265afcc08bcf400

Status affected

Version < 255c0e60e1d16874fc151358d94bc8df661600dd

Version 3050b99850247695cb07a5c15265afcc08bcf400

Status affected

Version < 5d122db2ff80cd2aed4dcd630befb56b51ddf947

Version 3050b99850247695cb07a5c15265afcc08bcf400

Status affected

VendorLinux

≫

Product Linux

Default Statusaffected

Version 4.8

Status affected

Version < 4.8

Version 0

Status unaffected

Version <= 6.1.*

Version 6.1.53

Status unaffected

Version <= 6.4.*

Version 6.4.16

Status unaffected

Version <= 6.5.*

Version 6.5.3

Status unaffected

Version <= *

Version 6.6

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.02%	0.031

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string

https://git.kernel.org/stable/c/70518f3aaf5a059b691867d7d2d46b999319656a

https://git.kernel.org/stable/c/2f2a6422287fe29f9343247d77b645100ece0652

https://git.kernel.org/stable/c/255c0e60e1d16874fc151358d94bc8df661600dd

https://git.kernel.org/stable/c/5d122db2ff80cd2aed4dcd630befb56b51ddf947

https://nvd.nist.gov/vuln/detail/CVE-2023-53539

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53539

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53539

EUVD