PT-2024-14758 · Linux+9 · Linux Kernel+9

Published

2023-11-01

·

Updated

2025-09-29

·

CVE-2023-52803

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description The issue is related to the SUNRPC component in the Linux kernel, where the RPC client can clean up freed pipefs dentries. In certain scenarios, when the kernel frees the pipefs sb of the current client and immediately allocates a new pipefs sb, the rpc remove pipedir function may misjudge the existence of pipefs sb, leading to the cleaning of released freed pipefs dentries. This error can be caught by KASAN. The function rpc remove pipedir should check whether the current pipefs sb is consistent with the original pipefs sb to fix this issue.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

ALSA-2024:5101
ALSA-2024:5102
ALSA-2025_16880
BDU:2025-15328
CESA-2024_5101
CESA-2024_5102
CVE-2023-52803
INFSA-2024_5101
INFSA-2024_5102
OESA-2024-1705
OESA-2024-1706
OESA-2024-1707
RHSA-2024:5101
RHSA-2024:5102
RHSA-2024_5101
RHSA-2024_5102
RHSA-2025:4509
RLSA-2024:5101
RLSA-2024:5102
RXSA-2024:5101
SUSE-SU-2024:1979-1
SUSE-SU-2024:1983-1
SUSE-SU-2024:2008-1
SUSE-SU-2024:2019-1
SUSE-SU-2024:2184-1
SUSE-SU-2024:2190-1
SUSE-SU-2024:2571-1
SUSE-SU-2024:2896-1
SUSE-SU-2024:2973-1
SUSE-SU-2025:20008-1
SUSE-SU-2025:20028-1
USN-7003-1
USN-7003-2
USN-7003-3
USN-7003-4
USN-7003-5
USN-7006-1

Affected Products

Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu