CVE-2023-53153

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the cfg80211 subsystem related to the wext interface. Key data in wext.connect is not reset during connection attempts, potentially leading to a use-after-free condition. This occurs when data from a previous connection is incorrectly used by drivers or mac80211, potentially accessing freed or reused memory. The cfg80211 sme connect() function was also optimized to avoid unnecessary scheduling of the conn work.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.