PT-2025-41076 · Linux+3 · Linux Kernel+3

Published

2024-04-30

Updated

2025-11-28

CVE-2023-53632

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.4.0-rc7 for upstream min debug 2023 06 28 17 02

Description The Linux kernel contains an issue in the net/mlx5e module where the RTNL lock is not held when needed before calling xdp set features(). This can occur when switching from uplink rep to nic profile, potentially leading to assertion failures and system instability. The issue is triggered when calling the call netdevice notifiers info function.

Recommendations Update to a version newer than 6.4.0-rc7 for upstream min debug 2023 06 28 17 02.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALSA-2025_16880

CVE-2023-53632

RHSA-2024:2394

RHSA-2024_2394

SUSE-SU-2025:21040-1

SUSE-SU-2025:21052-1

SUSE-SU-2025:21056-1

SUSE-SU-2025:21064-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4128-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4140-1

SUSE-SU-2025:4141-1

SUSE-SU-2025:4301-1

Affected Products

Linux Kernel

Red Hat

Suse

Mlx5E

PT-2025-41076 · Linux+3 · Linux Kernel+3

CVE-2023-53632

Related Identifiers

Affected Products

References · 1010