CVE-2023-53825

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description An issue was identified in the Linux kernel related to error handling within the kcm sendmsg() function when dealing with SOCK DGRAM sockets. A memory leak was initially addressed, but a subsequent problem was discovered where the MSG MORE queue could be corrupted due to incorrect handling of partial data copies during errors. Specifically, the function failed to properly purge the queue when an error occurred with SOCK DGRAM, similar to how it handles UDP. This could lead to subsequent sendmsg() calls resuming from an incorrect skb and further corrupting the queue. While no real-world reports of exploitation have surfaced, the issue was identified through syzkaller testing. The kcm sendmsg() function is involved, and the kcm tx msg(head)->last skb variable is updated during error handling.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.