PT-2025-49641 · Linux+1 · Linux Kernel+1

Published

2025-12-09

·

Updated

2026-04-20

·

CVE-2023-53781

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.0-rc4-01174-gb5d54eb5899a #7
Description The Linux kernel contains a use-after-free issue within the tcp write timer handler() function. This occurs when the SMC (SMC socket) creates a kernel socket and the kernel socket's reference count is not properly managed during socket closure. Specifically, if the socket's state is not TCP CLOSE, the TCP timers may not be stopped, leading to a potential use-after-free condition when the timers fire. This can result in a kernel crash. The issue was identified through syzbot testing and Eric's ref tracker.
Recommendations Update to Linux kernel version 6.3.0-rc4-01174-gb5d54eb5899a #7 or a later version that includes the fix.

Exploit

Related Identifiers

CVE-2023-53781
OESA-2026-1075
OESA-2026-1076
SUSE-SU-2026:0263-1
SUSE-SU-2026:0316-1
SUSE-SU-2026:0317-1
SUSE-SU-2026:0350-1
SUSE-SU-2026:0369-1
SUSE-SU-2026:0411-1
SUSE-SU-2026:0617-1
SUSE-SU-2026:0953-1
SUSE-SU-2026:0954-1
SUSE-SU-2026:0958-1
SUSE-SU-2026:0964-1
SUSE-SU-2026:0970-1
SUSE-SU-2026:0983-1
SUSE-SU-2026:0985-1
SUSE-SU-2026:0992-1
SUSE-SU-2026:0997-1
SUSE-SU-2026:1000-1
SUSE-SU-2026:1002-1
SUSE-SU-2026:1039-1
SUSE-SU-2026:1044-1
SUSE-SU-2026:1046-1
SUSE-SU-2026:1048-1
SUSE-SU-2026:1049-1
SUSE-SU-2026:1088-1

Affected Products

Debian
Linux Kernel