PT-2025-41104 · Linux+2 · Linux Kernel+2

Publicado

2022-11-15

Atualizado

2025-11-28

CVE-2023-53660

CVSS v3.1

5.5

Média

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc2+

Description The Linux kernel contains an issue within the bpf and cpumap subsystems related to handling socket buffers (skb) during pointer ring cleanup. Specifically, the cpu map ring cleanup() function does not properly handle skb mode, treating socket buffers within the pointer ring as XDP frames. This can lead to incorrect memory usage and warnings during XDP redirect operations, particularly when using both skb-mode and stress-mode. A premature stop of the kthread cpu map kthread run() can also contribute to this issue.

Recommendations Update to a version later than 6.5.0-rc2+ to address this issue.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-253

Identificadores relacionados

ALSA-2025_16880

BDU:2026-03830

CVE-2023-53660

RHSA-2022:8267

RHSA-2022_8267

RHSA-2024:2394

RHSA-2024_2394

SUSE-SU-2025:21040-1

SUSE-SU-2025:21052-1

SUSE-SU-2025:21056-1

SUSE-SU-2025:21064-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4128-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4140-1

SUSE-SU-2025:4141-1

SUSE-SU-2025:4301-1

Produtos afetados

Linux Kernel

Red Hat

Suse

PT-2025-41104 · Linux+2 · Linux Kernel+2

CVE-2023-53660

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 1017