PT-2025-43123 · Linux+3 · Linux Kernel+3

Published

2023-08-15

Updated

2025-12-04

CVE-2023-53722

CVSS v2.0

4.3

Medium

Vector

AV:L/AC:L/Au:M/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s md/raid1 subsystem where an out-of-bounds write can occur in the raid1 remove disk() function if rddev->raid disk is greater than mddev->raid disks. This issue was addressed by validating the number variable. Similar reports were found in commits d17f744e883b and 1ebc2cec0b7d.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2025_16880

BDU:2026-01567

CESA-2024_3138

CVE-2023-53722

OESA-2025-2554

RHSA-2024:2394

RHSA-2024:3138

RHSA-2024_2394

RHSA-2024_3138

SUSE-SU-2025:21040-1

SUSE-SU-2025:21052-1

SUSE-SU-2025:21056-1

SUSE-SU-2025:21064-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4111-1

SUSE-SU-2025:4128-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4135-1

SUSE-SU-2025:4139-1

SUSE-SU-2025:4140-1

SUSE-SU-2025:4141-1

SUSE-SU-2025:4149-1

SUSE-SU-2025:4188-1

SUSE-SU-2025:4189-1

SUSE-SU-2025:4301-1

SUSE-SU-2025:4315-1

SUSE-SU-2025:4320-1

Affected Products

Centos

Linux Kernel

Red Hat

Suse

PT-2025-43123 · Linux+3 · Linux Kernel+3

CVE-2023-53722

Weakness Enumeration

Related Identifiers

Affected Products

References · 1462