CVE-2023-54142

CVSS v2.0

7.7

High

Vector

AV:A/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.4.0-rc5-01219-gfa0e21fa4443

Description The Linux kernel contains a use-after-free issue within the gtp (Generic Tunneling Protocol) subsystem, specifically in the gtp encap destroy() function. The issue occurs because release sock() is called after sock put() releases the last reference count, leading to a use-after-free condition. This was identified by syzkaller, which reported that the same process freed a socket (sk) and subsequently accessed it illegally. The commit e198987e7dd7 attempted to address this by adding lock sock() and release sock(), but the timing of release sock() remains problematic.

Recommendations Upgrade to Linux kernel version 6.4.0-rc5-01219-gfa0e21fa4443 or a later version to resolve this issue.

Exploit

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2026-04225

CVE-2023-54142

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:0350-1

SUSE-SU-2026:0369-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0474-1

SUSE-SU-2026:0496-1

SUSE-SU-2026:0617-1

SUSE-SU-2026:0711-1

SUSE-SU-2026:0713-1

SUSE-SU-2026:0725-1

SUSE-SU-2026:0727-1

SUSE-SU-2026:0731-1

SUSE-SU-2026:0734-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Linux Kernel

CVE-2023-54142

Weakness Enumeration

Related Identifiers

Affected Products

References · 2114