PT-2025-43132 · Linux+1 · Linux Kernel+1

Published

2025-10-22

Updated

2025-11-28

CVE-2023-53731

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.4.0-rc6-syzkaller-00240-g4e9f0ec38852

Description The Linux kernel contained a potential deadlock issue within the netlink set err() function. The syzbot fuzzer identified a possible lock inversion dependency, where interrupts could lead to an inverse lock ordering between nl table lock and local->queue stop reason lock. A similar issue was previously addressed in netlink lock table(). The fix introduces IRQ safety to netlink set err() and netlink diag dump() to prevent this deadlock scenario. The issue involves the potential for a deadlock when netlink set err() is called while an interrupt handler holds a different lock, specifically local->queue stop reason lock.

Recommendations Update to a version of the Linux kernel newer than 6.4.0-rc6-syzkaller-00240-g4e9f0ec38852.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-53731

RHSA-2024:9315

SUSE-SU-2025:21040-1

SUSE-SU-2025:21052-1

SUSE-SU-2025:21056-1

SUSE-SU-2025:21064-1

SUSE-SU-2025:4057-1

SUSE-SU-2025:4128-1

SUSE-SU-2025:4132-1

SUSE-SU-2025:4140-1

SUSE-SU-2025:4141-1

SUSE-SU-2025:4301-1

Affected Products

Linux Kernel

Suse

PT-2025-43132 · Linux+1 · Linux Kernel+1

CVE-2023-53731

Related Identifiers

Affected Products

References · 1016