PT-2025-49662 · Linux+2 · Linux Kernel+2

Published

2025-12-09

Updated

2026-03-26

CVE-2023-53802

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s ath9k module, specifically within the ath9k htc rx msg() function. This function is responsible for either freeing a socket buffer (skb) or passing its management to a callback function. However, the skb is not freed when no callback function is present, leading to a memory leak. The issue was identified by the Linux Verification Center using Syzkaller.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-53802

SUSE-SU-2026:0263-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0617-1

SUSE-SU-2026:1078-1

Affected Products

Linux Kernel

Syzkaller

Ath9K

PT-2025-49662 · Linux+2 · Linux Kernel+2

CVE-2023-53802

Related Identifiers

Affected Products

References · 1101