CVE-2023-53221

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak can occur in the Linux kernel due to a failure during the attachment of fentry probes. When the attachment fails, the allocated bpf trampoline image remains in the system, as visible in /proc/kallsyms. This issue is reproducible using a simple bpf program attempting to attach to a function (trap init) that is freed after kernel initialization. The libbpf library may fallback to raw tracepoint, resulting in multiple leaked trampoline images.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401

Related Identifiers

ALSA-2025_16880

AZL-71230

BDU:2026-05875

CVE-2023-53221

OESA-2025-2349

OESA-2025-2350

RHSA-2024:2394

RHSA-2024_2394

SUSE-SU-2025:03600-1

SUSE-SU-2025:03634-1

SUSE-SU-2025:20851-1

SUSE-SU-2025:20861-1

SUSE-SU-2025:20870-1

SUSE-SU-2025:20898-1

SUSE-SU-2025:3751-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4141-1

Affected Products

Astra Linux

Debian

Linux Kernel

Red Hat

Red Os

Suse

Libbpf

CVE-2023-53221

Weakness Enumeration

Related Identifiers

Affected Products

References · 1431