PT-2025-40194 · Linux+3 · Linux Kernel+3

Published

2023-08-10

Updated

2025-11-19

CVE-2023-53487

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc3+

Description The Linux kernel contains a flaw in the powerpc/rtas flash component related to user copy access to flash block cache objects. When hardened usercopy is enabled, utilizing the /proc/powerpc/rtas/firmware update interface for system firmware updates can lead to a kernel BUG and potential system instability. Specifically, the flash block cache objects were not created using kmem cache create usercopy(), which is necessary to mark them as safe for user access. This allows direct copying from user memory to these objects, creating a potential security issue. The usercopy abort() function is involved in the error handling.

Recommendations Update to a version newer than 6.5.0-rc3+ to address this issue.

Exploit

Fix

Allocation of Resources Without Limits

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770CWE-276

Related Identifiers

ALSA-2025_16880

BDU:2025-16317

CVE-2023-53487

RHSA-2024:2394

SUSE-SU-2025:03600-1

SUSE-SU-2025:03615-1

SUSE-SU-2025:03628-1

SUSE-SU-2025:03634-1

SUSE-SU-2025:20851-1

SUSE-SU-2025:20861-1

SUSE-SU-2025:20870-1

SUSE-SU-2025:20898-1

SUSE-SU-2025:3716-1

SUSE-SU-2025:3751-1

SUSE-SU-2025:3761-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4141-1

Affected Products

Astra Linux

Linux Kernel

Red Hat

Suse

PT-2025-40194 · Linux+3 · Linux Kernel+3

CVE-2023-53487

Weakness Enumeration

Related Identifiers

Affected Products

References · 2011