PT-2025-52972 · Linux+1 · Linux Kernel+1

Published

2025-12-24

Updated

2026-02-24

CVE-2023-54015

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the net/mlx5 component, specifically in the mlx5 devcom register device function. A use-after-free condition can occur if devcom allocation fails, potentially leading to instability or compromise. The issue arises because the private memory (priv) might be freed by a thread that did not allocate it, resulting in a use-after-free scenario. The fix ensures that priv is only freed by the thread that originally allocated it.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-54015

RHSA-2023:6583

RHSA-2023:7077

SUSE-SU-2026:0263-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0617-1

Affected Products

Linux Kernel

Mlx5

PT-2025-52972 · Linux+1 · Linux Kernel+1

CVE-2023-54015

Related Identifiers

Affected Products

References · 976