Linux · Linux Kernel · CVE-2023-52513
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
The issue is related to a NULL pointer dereference in the RDMA/siw component of the Linux kernel. When immediate MPA request processing fails, the newly created endpoint unlinks the listening endpoint and is ready to be dropped. However, this special case was not handled correctly by the code handling the later TCP socket close, causing a NULL dereference crash in `siw cm work handler()` when dereferencing a NULL listener. The patch also simplifies MPA processing in general by suppressing scheduling of useless TCP socket reads in `sk data ready()` upcall if the socket is already moved out of TCP ESTABLISHED state.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.