PT-2025-18898 · Linux+4 · Linux Kernel+4

Published

2024-04-30

·

Updated

2025-09-29

·

CVE-2023-53134

CVSS v3.1

5.5

Medium

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.10.156
Description A memory allocation issue in the Linux kernel's bnxt en driver has been resolved. The driver needs to track concurrent TPA completions on the aggregation ring, and on P5 chips, the maximum number of concurrent TPA is 256. Memory allocation failure has been reported due to order-5 memory allocation for TPA data. The issue has been fixed by allocating each small chunk of memory separately for each TPA instance, reducing it to order-0 allocations.
Recommendations For Linux kernel version 5.10.156 and earlier, update to a newer version that includes the fix for the memory allocation issue in the bnxt en driver. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

ALSA-2025_16880
CESA-2024_3138
CVE-2023-53134
RHSA-2024:2394
RHSA-2024:3138
RHSA-2024_2394
RHSA-2024_3138
SUSE-SU-2025:01918-1
SUSE-SU-2025:01966-1
SUSE-SU-2025:02173-1
SUSE-SU-2025:02262-1
SUSE-SU-2025:2173-1
SUSE-SU-2025_02173-1
SUSE-SU-2025_02262-1

Affected Products

Astra Linux
Centos
Linux Kernel
Red Hat
Suse