CVE-2023-54112

CVSS v2.0

4.3

Medium

Vector

AV:A/AC:H/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a memory leak in the kcm sendmsg() function. The issue occurs when an error happens after some bytes have been copied during message sending, leaving the last skb pointer unmodified. A subsequent call to kcm sendmsg() then uses this outdated pointer, corrupting the head frag list and causing a memory leak. The function kcm tx msg() utilizes kcm tx msg(head)->last skb as a cursor for appending newly allocated skbs to head.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401

Related Identifiers

BDU:2026-01295

CVE-2023-54112

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:0473-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Linux Kernel

CVE-2023-54112

Weakness Enumeration

Related Identifiers

Affected Products

References · 1619