PT-2025-41104 · Linux+2 · Linux Kernel+2

Published

2022-11-15

Updated

2025-11-28

CVE-2023-53660

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc2+

Description The Linux kernel contains an issue within the bpf and cpumap subsystems related to handling socket buffers (skb) during pointer ring cleanup. Specifically, the cpu map ring cleanup() function does not properly handle skb mode, treating socket buffers within the pointer ring as XDP frames. This can lead to incorrect memory usage and warnings during XDP redirect operations, particularly when using both skb-mode and stress-mode. A premature stop of the kthread cpu map kthread run() can also contribute to this issue.

Recommendations Update to a version later than 6.5.0-rc2+ to address this issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-253

Related Identifiers

ALSA-2025_16880

BDU:2026-03830

CVE-2023-53660

RHSA-2022:8267

RHSA-2022_8267

RHSA-2024:2394

RHSA-2024_2394

SUSE-SU-2025:21040-1

SUSE-SU-2025:21052-1

SUSE-SU-2025:21056-1

SUSE-SU-2025:21064-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4128-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4140-1

SUSE-SU-2025:4141-1

SUSE-SU-2025:4301-1

Affected Products

Linux Kernel

Red Hat

Suse

PT-2025-41104 · Linux+2 · Linux Kernel+2

CVE-2023-53660

Weakness Enumeration

Related Identifiers

Affected Products

References · 1017