PT-2025-40719 · Linux+4 · Linux Kernel+4

Published

2024-04-30

Updated

2026-03-14

CVE-2023-53577

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc2+ #1

Description An issue has been identified in the Linux kernel related to the bpf and cpumap functionalities. Specifically, a warning can occur when running xdp redirect cpu with RT threads, stemming from a premature stopping of the kthread in cpu map kthread stop(). This occurs because the kthread is stopped before the cpu map kthread run() function is called, while the XDP program has already queued frames or skbs into the ptr ring. The root cause is similar to a previous memory leak fix (commit 436901649731). The issue arises when cpu map ring cleanup() finds the ptr ring not empty, leading to a warning. The fix ensures the per-cpu kthread is running before cpu map entry alloc() returns.

Recommendations Update to a version later than 6.5.0-rc2+ #1.

Exploit

Fix

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401

Related Identifiers

ALSA-2025_16880

CESA-2024_3138

CVE-2023-53577

OESA-2026-1504

OESA-2026-1505

RHSA-2024:2394

RHSA-2024:3138

RHSA-2024_2394

RHSA-2024_3138

SUSE-SU-2025:21040-1

SUSE-SU-2025:21052-1

SUSE-SU-2025:21056-1

SUSE-SU-2025:21064-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4128-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4140-1

SUSE-SU-2025:4141-1

SUSE-SU-2025:4301-1

Affected Products

Centos

Debian

Linux Kernel

Red Hat

Suse

PT-2025-40719 · Linux+4 · Linux Kernel+4

CVE-2023-53577

Weakness Enumeration

Related Identifiers

Affected Products

References · 1022