CVE-2023-53857

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-03980-gd11ae1b16b0a #247

Description The Linux kernel contains a flaw in the bpf sk storage component related to an invalid wait context lock dependency report. Specifically, the issue arises from attempting to allocate memory after acquiring a raw spin lock, which is unsafe in real-time contexts. This can lead to a system crash (splat) when using task or cgroup local storage. The problem is associated with the use of kzalloc(GFP ATOMIC) in tracing contexts, particularly for socket (sk) and inode storage, where memory allocation hasn't been moved to the bpf memory allocator. The issue is triggered when a bpf program attempts to hold a verifier-accepted sk pointer while in a kzalloc unsafe context. The fix avoids allocating memory after acquiring the raw spin lock.

Recommendations Update to Linux kernel version 6.5.0-03980-gd11ae1b16b0a #247 or a later version to resolve this issue.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-53857

RHSA-2024:2394

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Debian

Linux Kernel

Red Hat

CVE-2023-53857

Related Identifiers

Affected Products

References · 1458