CVE-2023-54278

CVSS v2.0

5.0

Medium

Vector

AV:L/AC:H/Au:S/C:P/I:P/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc3-09759-gc5666c912155

Description The Linux kernel contains an issue within the s390/vmem subsystem. A flaw exists where the kernel crashes during boot when debug pagealloc is enabled, specifically after commit bb1520d581a3 ("s390/mm: start kernel with DAT enabled"). This occurs due to the use of large mappings on machines with EDAT1/EDAT2. The fix involves splitting the mappings into 4k pages when debug pagealloc is enabled via CONFIG DEBUG PAGEALLOC ENABLE DEFAULT or the debug pagealloc kernel command line option.

Recommendations Update to Linux kernel version 6.5.0-rc3-09759-gc5666c912155 or a later version that includes the fix.

Exploit

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2026-02064

CVE-2023-54278

RHSA-2025:6966

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Linux Kernel

Red Hat

CVE-2023-54278

Weakness Enumeration

Related Identifiers

Affected Products

References · 1460