CVE-2023-53720

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains an issue in the net/mlx5e component where the label mapping is not correctly released when replacing an existing connection tracking (ct) entry. This leads to a memory leak. The backtrace indicates the issue occurs during the processing of network flows, specifically within the mlx5 tc ct entry create mod hdr and mlx5 tc ct block flow offload functions. The mapping add function within the mlx5 core module is also implicated in the memory leak.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.