Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-53445 (GCVE-0-2023-53445)
Vulnerability from cvelistv5 – Published: 2025-09-18 16:04 – Updated: 2026-01-14 19:23
VLAI?
EPSS
Title
net: qrtr: Fix a refcount bug in qrtr_recvmsg()
Summary
In the Linux kernel, the following vulnerability has been resolved:
net: qrtr: Fix a refcount bug in qrtr_recvmsg()
Syzbot reported a bug as following:
refcount_t: addition on 0; use-after-free.
...
RIP: 0010:refcount_warn_saturate+0x17c/0x1f0 lib/refcount.c:25
...
Call Trace:
<TASK>
__refcount_add include/linux/refcount.h:199 [inline]
__refcount_inc include/linux/refcount.h:250 [inline]
refcount_inc include/linux/refcount.h:267 [inline]
kref_get include/linux/kref.h:45 [inline]
qrtr_node_acquire net/qrtr/af_qrtr.c:202 [inline]
qrtr_node_lookup net/qrtr/af_qrtr.c:398 [inline]
qrtr_send_resume_tx net/qrtr/af_qrtr.c:1003 [inline]
qrtr_recvmsg+0x85f/0x990 net/qrtr/af_qrtr.c:1070
sock_recvmsg_nosec net/socket.c:1017 [inline]
sock_recvmsg+0xe2/0x160 net/socket.c:1038
qrtr_ns_worker+0x170/0x1700 net/qrtr/ns.c:688
process_one_work+0x991/0x15c0 kernel/workqueue.c:2390
worker_thread+0x669/0x1090 kernel/workqueue.c:2537
It occurs in the concurrent scenario of qrtr_recvmsg() and
qrtr_endpoint_unregister() as following:
cpu0 cpu1
qrtr_recvmsg qrtr_endpoint_unregister
qrtr_send_resume_tx qrtr_node_release
qrtr_node_lookup mutex_lock(&qrtr_node_lock)
spin_lock_irqsave(&qrtr_nodes_lock, ) refcount_dec_and_test(&node->ref) [node->ref == 0]
radix_tree_lookup [node != NULL] __qrtr_node_release
qrtr_node_acquire spin_lock_irqsave(&qrtr_nodes_lock, )
kref_get(&node->ref) [WARNING] ...
mutex_unlock(&qrtr_node_lock)
Use qrtr_node_lock to protect qrtr_node_lookup() implementation, this
is actually improving the protection of node reference.
Severity ?
5.5 (Medium)
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Linux | Linux |
Affected:
0a7e0d0ef05440db03c3199e84d228db943b237f , < 98a9cd82c541ef6cbdb829cd6c05cbbb471e373c
(git)
Affected: 0a7e0d0ef05440db03c3199e84d228db943b237f , < b9ba5906c42089f8e1d0001b7b50a7940f086cbb (git) Affected: 0a7e0d0ef05440db03c3199e84d228db943b237f , < aa95efa187b4114075f312b3c4680d050b56fdec (git) Affected: 0a7e0d0ef05440db03c3199e84d228db943b237f , < 48a07f6e00d305597396da4d7494b81cec05b9d3 (git) Affected: 0a7e0d0ef05440db03c3199e84d228db943b237f , < 44d807320000db0d0013372ad39b53e12d52f758 (git) |
||
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2023-53445",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-01-14T19:19:20.517800Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-noinfo Not enough information",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-01-14T19:23:11.519Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"net/qrtr/af_qrtr.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "98a9cd82c541ef6cbdb829cd6c05cbbb471e373c",
"status": "affected",
"version": "0a7e0d0ef05440db03c3199e84d228db943b237f",
"versionType": "git"
},
{
"lessThan": "b9ba5906c42089f8e1d0001b7b50a7940f086cbb",
"status": "affected",
"version": "0a7e0d0ef05440db03c3199e84d228db943b237f",
"versionType": "git"
},
{
"lessThan": "aa95efa187b4114075f312b3c4680d050b56fdec",
"status": "affected",
"version": "0a7e0d0ef05440db03c3199e84d228db943b237f",
"versionType": "git"
},
{
"lessThan": "48a07f6e00d305597396da4d7494b81cec05b9d3",
"status": "affected",
"version": "0a7e0d0ef05440db03c3199e84d228db943b237f",
"versionType": "git"
},
{
"lessThan": "44d807320000db0d0013372ad39b53e12d52f758",
"status": "affected",
"version": "0a7e0d0ef05440db03c3199e84d228db943b237f",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"net/qrtr/af_qrtr.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "5.6"
},
{
"lessThan": "5.6",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"version": "5.10.178",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"version": "5.15.107",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"version": "6.1.24",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.2.*",
"status": "unaffected",
"version": "6.2.11",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "6.3",
"versionType": "original_commit_for_fix"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.10.178",
"versionStartIncluding": "5.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.15.107",
"versionStartIncluding": "5.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.1.24",
"versionStartIncluding": "5.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.2.11",
"versionStartIncluding": "5.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.3",
"versionStartIncluding": "5.6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qrtr: Fix a refcount bug in qrtr_recvmsg()\n\nSyzbot reported a bug as following:\n\nrefcount_t: addition on 0; use-after-free.\n...\nRIP: 0010:refcount_warn_saturate+0x17c/0x1f0 lib/refcount.c:25\n...\nCall Trace:\n \u003cTASK\u003e\n __refcount_add include/linux/refcount.h:199 [inline]\n __refcount_inc include/linux/refcount.h:250 [inline]\n refcount_inc include/linux/refcount.h:267 [inline]\n kref_get include/linux/kref.h:45 [inline]\n qrtr_node_acquire net/qrtr/af_qrtr.c:202 [inline]\n qrtr_node_lookup net/qrtr/af_qrtr.c:398 [inline]\n qrtr_send_resume_tx net/qrtr/af_qrtr.c:1003 [inline]\n qrtr_recvmsg+0x85f/0x990 net/qrtr/af_qrtr.c:1070\n sock_recvmsg_nosec net/socket.c:1017 [inline]\n sock_recvmsg+0xe2/0x160 net/socket.c:1038\n qrtr_ns_worker+0x170/0x1700 net/qrtr/ns.c:688\n process_one_work+0x991/0x15c0 kernel/workqueue.c:2390\n worker_thread+0x669/0x1090 kernel/workqueue.c:2537\n\nIt occurs in the concurrent scenario of qrtr_recvmsg() and\nqrtr_endpoint_unregister() as following:\n\n\tcpu0\t\t\t\t\tcpu1\nqrtr_recvmsg\t\t\t\tqrtr_endpoint_unregister\nqrtr_send_resume_tx\t\t\tqrtr_node_release\nqrtr_node_lookup\t\t\tmutex_lock(\u0026qrtr_node_lock)\nspin_lock_irqsave(\u0026qrtr_nodes_lock, )\trefcount_dec_and_test(\u0026node-\u003eref) [node-\u003eref == 0]\nradix_tree_lookup [node != NULL]\t__qrtr_node_release\nqrtr_node_acquire\t\t\tspin_lock_irqsave(\u0026qrtr_nodes_lock, )\nkref_get(\u0026node-\u003eref) [WARNING]\t\t...\n\t\t\t\t\tmutex_unlock(\u0026qrtr_node_lock)\n\nUse qrtr_node_lock to protect qrtr_node_lookup() implementation, this\nis actually improving the protection of node reference."
}
],
"providerMetadata": {
"dateUpdated": "2025-09-18T16:04:21.257Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/98a9cd82c541ef6cbdb829cd6c05cbbb471e373c"
},
{
"url": "https://git.kernel.org/stable/c/b9ba5906c42089f8e1d0001b7b50a7940f086cbb"
},
{
"url": "https://git.kernel.org/stable/c/aa95efa187b4114075f312b3c4680d050b56fdec"
},
{
"url": "https://git.kernel.org/stable/c/48a07f6e00d305597396da4d7494b81cec05b9d3"
},
{
"url": "https://git.kernel.org/stable/c/44d807320000db0d0013372ad39b53e12d52f758"
}
],
"title": "net: qrtr: Fix a refcount bug in qrtr_recvmsg()",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2023-53445",
"datePublished": "2025-09-18T16:04:21.257Z",
"dateReserved": "2025-09-17T14:54:09.753Z",
"dateUpdated": "2026-01-14T19:23:11.519Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2023-53445\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-09-18T16:15:48.817\",\"lastModified\":\"2026-01-14T20:16:04.897\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nnet: qrtr: Fix a refcount bug in qrtr_recvmsg()\\n\\nSyzbot reported a bug as following:\\n\\nrefcount_t: addition on 0; use-after-free.\\n...\\nRIP: 0010:refcount_warn_saturate+0x17c/0x1f0 lib/refcount.c:25\\n...\\nCall Trace:\\n \u003cTASK\u003e\\n __refcount_add include/linux/refcount.h:199 [inline]\\n __refcount_inc include/linux/refcount.h:250 [inline]\\n refcount_inc include/linux/refcount.h:267 [inline]\\n kref_get include/linux/kref.h:45 [inline]\\n qrtr_node_acquire net/qrtr/af_qrtr.c:202 [inline]\\n qrtr_node_lookup net/qrtr/af_qrtr.c:398 [inline]\\n qrtr_send_resume_tx net/qrtr/af_qrtr.c:1003 [inline]\\n qrtr_recvmsg+0x85f/0x990 net/qrtr/af_qrtr.c:1070\\n sock_recvmsg_nosec net/socket.c:1017 [inline]\\n sock_recvmsg+0xe2/0x160 net/socket.c:1038\\n qrtr_ns_worker+0x170/0x1700 net/qrtr/ns.c:688\\n process_one_work+0x991/0x15c0 kernel/workqueue.c:2390\\n worker_thread+0x669/0x1090 kernel/workqueue.c:2537\\n\\nIt occurs in the concurrent scenario of qrtr_recvmsg() and\\nqrtr_endpoint_unregister() as following:\\n\\n\\tcpu0\\t\\t\\t\\t\\tcpu1\\nqrtr_recvmsg\\t\\t\\t\\tqrtr_endpoint_unregister\\nqrtr_send_resume_tx\\t\\t\\tqrtr_node_release\\nqrtr_node_lookup\\t\\t\\tmutex_lock(\u0026qrtr_node_lock)\\nspin_lock_irqsave(\u0026qrtr_nodes_lock, )\\trefcount_dec_and_test(\u0026node-\u003eref) [node-\u003eref == 0]\\nradix_tree_lookup [node != NULL]\\t__qrtr_node_release\\nqrtr_node_acquire\\t\\t\\tspin_lock_irqsave(\u0026qrtr_nodes_lock, )\\nkref_get(\u0026node-\u003eref) [WARNING]\\t\\t...\\n\\t\\t\\t\\t\\tmutex_unlock(\u0026qrtr_node_lock)\\n\\nUse qrtr_node_lock to protect qrtr_node_lookup() implementation, this\\nis actually improving the protection of node reference.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.6\",\"versionEndExcluding\":\"5.10.178\",\"matchCriteriaId\":\"D24F41C8-D72D-442C-8122-DD0C7229CC1F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.11\",\"versionEndExcluding\":\"5.15.107\",\"matchCriteriaId\":\"6BCC0C73-754E-4985-A087-F74888650709\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.16\",\"versionEndExcluding\":\"6.1.24\",\"matchCriteriaId\":\"E6EC432F-985F-450F-954E-7EAD42ADA1F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"versionEndExcluding\":\"6.2.11\",\"matchCriteriaId\":\"93C03C9A-798F-4CD5-912F-A436BFA0CC7E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.3:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8E3B0E8-FA27-4305-87BB-AF6C25B160CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.3:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"A47F0FC3-CE52-4BA1-BA51-22F783938431\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.3:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"3583026A-27EC-4A4C-850A-83F2AF970673\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.3:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC271202-7570-4505-89A4-D602D47BFD00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.3:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"D413BB6D-4F74-4C7D-9163-47786619EF53\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/44d807320000db0d0013372ad39b53e12d52f758\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/48a07f6e00d305597396da4d7494b81cec05b9d3\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/98a9cd82c541ef6cbdb829cd6c05cbbb471e373c\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/aa95efa187b4114075f312b3c4680d050b56fdec\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/b9ba5906c42089f8e1d0001b7b50a7940f086cbb\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-53445\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-01-14T19:19:20.517800Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"description\": \"CWE-noinfo Not enough information\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-01-14T19:19:14.522Z\"}}], \"cna\": {\"title\": \"net: qrtr: Fix a refcount bug in qrtr_recvmsg()\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"0a7e0d0ef05440db03c3199e84d228db943b237f\", \"lessThan\": \"98a9cd82c541ef6cbdb829cd6c05cbbb471e373c\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"0a7e0d0ef05440db03c3199e84d228db943b237f\", \"lessThan\": \"b9ba5906c42089f8e1d0001b7b50a7940f086cbb\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"0a7e0d0ef05440db03c3199e84d228db943b237f\", \"lessThan\": \"aa95efa187b4114075f312b3c4680d050b56fdec\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"0a7e0d0ef05440db03c3199e84d228db943b237f\", \"lessThan\": \"48a07f6e00d305597396da4d7494b81cec05b9d3\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"0a7e0d0ef05440db03c3199e84d228db943b237f\", \"lessThan\": \"44d807320000db0d0013372ad39b53e12d52f758\", \"versionType\": \"git\"}], \"programFiles\": [\"net/qrtr/af_qrtr.c\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"5.6\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"5.6\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"5.10.178\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.10.*\"}, {\"status\": \"unaffected\", \"version\": \"5.15.107\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.15.*\"}, {\"status\": \"unaffected\", \"version\": \"6.1.24\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.1.*\"}, {\"status\": \"unaffected\", \"version\": \"6.2.11\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.2.*\"}, {\"status\": \"unaffected\", \"version\": \"6.3\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"net/qrtr/af_qrtr.c\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/98a9cd82c541ef6cbdb829cd6c05cbbb471e373c\"}, {\"url\": \"https://git.kernel.org/stable/c/b9ba5906c42089f8e1d0001b7b50a7940f086cbb\"}, {\"url\": \"https://git.kernel.org/stable/c/aa95efa187b4114075f312b3c4680d050b56fdec\"}, {\"url\": \"https://git.kernel.org/stable/c/48a07f6e00d305597396da4d7494b81cec05b9d3\"}, {\"url\": \"https://git.kernel.org/stable/c/44d807320000db0d0013372ad39b53e12d52f758\"}], \"x_generator\": {\"engine\": \"bippy-1.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nnet: qrtr: Fix a refcount bug in qrtr_recvmsg()\\n\\nSyzbot reported a bug as following:\\n\\nrefcount_t: addition on 0; use-after-free.\\n...\\nRIP: 0010:refcount_warn_saturate+0x17c/0x1f0 lib/refcount.c:25\\n...\\nCall Trace:\\n \u003cTASK\u003e\\n __refcount_add include/linux/refcount.h:199 [inline]\\n __refcount_inc include/linux/refcount.h:250 [inline]\\n refcount_inc include/linux/refcount.h:267 [inline]\\n kref_get include/linux/kref.h:45 [inline]\\n qrtr_node_acquire net/qrtr/af_qrtr.c:202 [inline]\\n qrtr_node_lookup net/qrtr/af_qrtr.c:398 [inline]\\n qrtr_send_resume_tx net/qrtr/af_qrtr.c:1003 [inline]\\n qrtr_recvmsg+0x85f/0x990 net/qrtr/af_qrtr.c:1070\\n sock_recvmsg_nosec net/socket.c:1017 [inline]\\n sock_recvmsg+0xe2/0x160 net/socket.c:1038\\n qrtr_ns_worker+0x170/0x1700 net/qrtr/ns.c:688\\n process_one_work+0x991/0x15c0 kernel/workqueue.c:2390\\n worker_thread+0x669/0x1090 kernel/workqueue.c:2537\\n\\nIt occurs in the concurrent scenario of qrtr_recvmsg() and\\nqrtr_endpoint_unregister() as following:\\n\\n\\tcpu0\\t\\t\\t\\t\\tcpu1\\nqrtr_recvmsg\\t\\t\\t\\tqrtr_endpoint_unregister\\nqrtr_send_resume_tx\\t\\t\\tqrtr_node_release\\nqrtr_node_lookup\\t\\t\\tmutex_lock(\u0026qrtr_node_lock)\\nspin_lock_irqsave(\u0026qrtr_nodes_lock, )\\trefcount_dec_and_test(\u0026node-\u003eref) [node-\u003eref == 0]\\nradix_tree_lookup [node != NULL]\\t__qrtr_node_release\\nqrtr_node_acquire\\t\\t\\tspin_lock_irqsave(\u0026qrtr_nodes_lock, )\\nkref_get(\u0026node-\u003eref) [WARNING]\\t\\t...\\n\\t\\t\\t\\t\\tmutex_unlock(\u0026qrtr_node_lock)\\n\\nUse qrtr_node_lock to protect qrtr_node_lookup() implementation, this\\nis actually improving the protection of node reference.\"}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"5.10.178\", \"versionStartIncluding\": \"5.6\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"5.15.107\", \"versionStartIncluding\": \"5.6\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.1.24\", \"versionStartIncluding\": \"5.6\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.2.11\", \"versionStartIncluding\": \"5.6\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.3\", \"versionStartIncluding\": \"5.6\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2025-09-18T16:04:21.257Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-53445\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-01-14T19:23:11.519Z\", \"dateReserved\": \"2025-09-17T14:54:09.753Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2025-09-18T16:04:21.257Z\", \"assignerShortName\": \"Linux\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
WID-SEC-W-2025-2092
Vulnerability from csaf_certbund - Published: 2025-09-18 22:00 - Updated: 2026-03-04 23:00Summary
Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Der Kernel stellt den Kern des Linux Betriebssystems dar.
Angriff: Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuführen und um nicht nähere beschriebene Effekte zu verursachen.
Betroffene Betriebssysteme: - Linux
References
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen im Linux Kernel ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren und um nicht n\u00e4here beschriebene Effekte zu verursachen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-2092 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2092.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-2092 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2092"
},
{
"category": "external",
"summary": "Kernel CVE Announce Mailingliste",
"url": "https://lore.kernel.org/linux-cve-announce/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50375",
"url": "https://lore.kernel.org/linux-cve-announce/2025091848-CVE-2022-50375-2409@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50376",
"url": "https://lore.kernel.org/linux-cve-announce/2025091850-CVE-2022-50376-1398@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50377",
"url": "https://lore.kernel.org/linux-cve-announce/2025091851-CVE-2022-50377-f43b@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50378",
"url": "https://lore.kernel.org/linux-cve-announce/2025091851-CVE-2022-50378-4c78@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50379",
"url": "https://lore.kernel.org/linux-cve-announce/2025091851-CVE-2022-50379-a7c6@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50380",
"url": "https://lore.kernel.org/linux-cve-announce/2025091851-CVE-2022-50380-25c9@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50381",
"url": "https://lore.kernel.org/linux-cve-announce/2025091851-CVE-2022-50381-b83f@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50382",
"url": "https://lore.kernel.org/linux-cve-announce/2025091851-CVE-2022-50382-0ff0@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50383",
"url": "https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50383-e1c7@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50384",
"url": "https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50384-b652@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50385",
"url": "https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50385-7787@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50386",
"url": "https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50386-07d7@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50387",
"url": "https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50387-cd0d@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50388",
"url": "https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50388-02a2@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50389",
"url": "https://lore.kernel.org/linux-cve-announce/2025091853-CVE-2022-50389-17eb@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50390",
"url": "https://lore.kernel.org/linux-cve-announce/2025091853-CVE-2022-50390-742c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50391",
"url": "https://lore.kernel.org/linux-cve-announce/2025091853-CVE-2022-50391-7caa@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50392",
"url": "https://lore.kernel.org/linux-cve-announce/2025091853-CVE-2022-50392-967e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50393",
"url": "https://lore.kernel.org/linux-cve-announce/2025091853-CVE-2022-50393-d5da@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50394",
"url": "https://lore.kernel.org/linux-cve-announce/2025091853-CVE-2022-50394-fcaa@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50395",
"url": "https://lore.kernel.org/linux-cve-announce/2025091854-CVE-2022-50395-344c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50396",
"url": "https://lore.kernel.org/linux-cve-announce/2025091854-CVE-2022-50396-8b1b@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50397",
"url": "https://lore.kernel.org/linux-cve-announce/2025091854-CVE-2022-50397-44b6@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50398",
"url": "https://lore.kernel.org/linux-cve-announce/2025091854-CVE-2022-50398-1502@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50399",
"url": "https://lore.kernel.org/linux-cve-announce/2025091854-CVE-2022-50399-6051@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50400",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2022-50400-d99e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50401",
"url": "https://lore.kernel.org/linux-cve-announce/2025091850-CVE-2022-50401-814e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50402",
"url": "https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50402-4c96@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50403",
"url": "https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50403-0471@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50404",
"url": "https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50404-5db4@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50405",
"url": "https://lore.kernel.org/linux-cve-announce/2025091852-CVE-2022-50405-8450@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50406",
"url": "https://lore.kernel.org/linux-cve-announce/2025091853-CVE-2022-50406-8797@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50407",
"url": "https://lore.kernel.org/linux-cve-announce/2025091853-CVE-2022-50407-e539@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50408",
"url": "https://lore.kernel.org/linux-cve-announce/2025091853-CVE-2022-50408-5835@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50409",
"url": "https://lore.kernel.org/linux-cve-announce/2025091853-CVE-2022-50409-d7dc@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50410",
"url": "https://lore.kernel.org/linux-cve-announce/2025091853-CVE-2022-50410-edee@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50411",
"url": "https://lore.kernel.org/linux-cve-announce/2025091854-CVE-2022-50411-45ab@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50412",
"url": "https://lore.kernel.org/linux-cve-announce/2025091854-CVE-2022-50412-0f2e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50413",
"url": "https://lore.kernel.org/linux-cve-announce/2025091854-CVE-2022-50413-c345@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50414",
"url": "https://lore.kernel.org/linux-cve-announce/2025091854-CVE-2022-50414-a99a@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50415",
"url": "https://lore.kernel.org/linux-cve-announce/2025091854-CVE-2022-50415-9bba@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50416",
"url": "https://lore.kernel.org/linux-cve-announce/2025091854-CVE-2022-50416-886a@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50417",
"url": "https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2022-50417-1a69@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50418",
"url": "https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2022-50418-deac@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2022-50419",
"url": "https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2022-50419-23b9@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53369",
"url": "https://lore.kernel.org/linux-cve-announce/2025091854-CVE-2023-53369-394e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53370",
"url": "https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2023-53370-1085@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53371",
"url": "https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2023-53371-e5f9@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53372",
"url": "https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2023-53372-4d9e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53373",
"url": "https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2023-53373-087e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53374",
"url": "https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2023-53374-d003@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53375",
"url": "https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2023-53375-a29f@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53376",
"url": "https://lore.kernel.org/linux-cve-announce/2025091856-CVE-2023-53376-d18b@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53377",
"url": "https://lore.kernel.org/linux-cve-announce/2025091856-CVE-2023-53377-baaf@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53378",
"url": "https://lore.kernel.org/linux-cve-announce/2025091856-CVE-2023-53378-3d98@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53379",
"url": "https://lore.kernel.org/linux-cve-announce/2025091856-CVE-2023-53379-a33e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53380",
"url": "https://lore.kernel.org/linux-cve-announce/2025091856-CVE-2023-53380-b2e0@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53381",
"url": "https://lore.kernel.org/linux-cve-announce/2025091856-CVE-2023-53381-a774@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53382",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53382-0f75@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53383",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53383-fea9@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53384",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53384-042e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53385",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53385-7f7c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53386",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53386-8ab2@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53387",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53387-1fb7@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53388",
"url": "https://lore.kernel.org/linux-cve-announce/2025091858-CVE-2023-53388-657a@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53389",
"url": "https://lore.kernel.org/linux-cve-announce/2025091858-CVE-2023-53389-26a2@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53390",
"url": "https://lore.kernel.org/linux-cve-announce/2025091858-CVE-2023-53390-8eb5@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53391",
"url": "https://lore.kernel.org/linux-cve-announce/2025091858-CVE-2023-53391-cea3@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53392",
"url": "https://lore.kernel.org/linux-cve-announce/2025091858-CVE-2023-53392-9703@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53393",
"url": "https://lore.kernel.org/linux-cve-announce/2025091858-CVE-2023-53393-5e45@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53394",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53394-dd17@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53395",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53395-939e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53396",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53396-27d9@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53397",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53397-2076@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53398",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53398-2464@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53399",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53399-316d@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53400",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53400-2d47@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53401",
"url": "https://lore.kernel.org/linux-cve-announce/2025091800-CVE-2023-53401-b668@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53402",
"url": "https://lore.kernel.org/linux-cve-announce/2025091800-CVE-2023-53402-4b40@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53403",
"url": "https://lore.kernel.org/linux-cve-announce/2025091800-CVE-2023-53403-a3a3@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53404",
"url": "https://lore.kernel.org/linux-cve-announce/2025091800-CVE-2023-53404-29f4@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53405",
"url": "https://lore.kernel.org/linux-cve-announce/2025091801-CVE-2023-53405-885a@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53406",
"url": "https://lore.kernel.org/linux-cve-announce/2025091801-CVE-2023-53406-d3e0@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53407",
"url": "https://lore.kernel.org/linux-cve-announce/2025091801-CVE-2023-53407-6ad0@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53408",
"url": "https://lore.kernel.org/linux-cve-announce/2025091801-CVE-2023-53408-5a18@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53409",
"url": "https://lore.kernel.org/linux-cve-announce/2025091801-CVE-2023-53409-818d@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53410",
"url": "https://lore.kernel.org/linux-cve-announce/2025091801-CVE-2023-53410-4483@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53411",
"url": "https://lore.kernel.org/linux-cve-announce/2025091802-CVE-2023-53411-530b@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53412",
"url": "https://lore.kernel.org/linux-cve-announce/2025091802-CVE-2023-53412-cbd2@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53413",
"url": "https://lore.kernel.org/linux-cve-announce/2025091802-CVE-2023-53413-f354@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53414",
"url": "https://lore.kernel.org/linux-cve-announce/2025091802-CVE-2023-53414-e790@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53415",
"url": "https://lore.kernel.org/linux-cve-announce/2025091802-CVE-2023-53415-ea27@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53416",
"url": "https://lore.kernel.org/linux-cve-announce/2025091802-CVE-2023-53416-a008@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53417",
"url": "https://lore.kernel.org/linux-cve-announce/2025091803-CVE-2023-53417-caf7@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53418",
"url": "https://lore.kernel.org/linux-cve-announce/2025091803-CVE-2023-53418-5b61@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53419",
"url": "https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2023-53419-8597@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53420",
"url": "https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2023-53420-e1ce@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53421",
"url": "https://lore.kernel.org/linux-cve-announce/2025091855-CVE-2023-53421-0dd9@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53422",
"url": "https://lore.kernel.org/linux-cve-announce/2025091856-CVE-2023-53422-8cca@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53423",
"url": "https://lore.kernel.org/linux-cve-announce/2025091856-CVE-2023-53423-a5ce@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53424",
"url": "https://lore.kernel.org/linux-cve-announce/2025091856-CVE-2023-53424-d5b6@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53425",
"url": "https://lore.kernel.org/linux-cve-announce/2025091856-CVE-2023-53425-6eb5@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53426",
"url": "https://lore.kernel.org/linux-cve-announce/2025091856-CVE-2023-53426-9553@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53427",
"url": "https://lore.kernel.org/linux-cve-announce/2025091856-CVE-2023-53427-f56c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53428",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53428-1448@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53429",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53429-dd4c@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53430",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53430-4aaa@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53431",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53431-7eac@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53432",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53432-bc37@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53433",
"url": "https://lore.kernel.org/linux-cve-announce/2025091857-CVE-2023-53433-fc43@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53434",
"url": "https://lore.kernel.org/linux-cve-announce/2025091858-CVE-2023-53434-243b@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53435",
"url": "https://lore.kernel.org/linux-cve-announce/2025091858-CVE-2023-53435-ed57@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53436",
"url": "https://lore.kernel.org/linux-cve-announce/2025091858-CVE-2023-53436-d294@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53437",
"url": "https://lore.kernel.org/linux-cve-announce/2025091858-CVE-2023-53437-7993@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53438",
"url": "https://lore.kernel.org/linux-cve-announce/2025091858-CVE-2023-53438-50e2@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53439",
"url": "https://lore.kernel.org/linux-cve-announce/2025091858-CVE-2023-53439-b538@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53440",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53440-cd1e@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53441",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53441-0641@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53442",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53442-8a1f@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53443",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53443-6815@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53444",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53444-41d9@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53445",
"url": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53445-7b18@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53446",
"url": "https://lore.kernel.org/linux-cve-announce/2025091800-CVE-2023-53446-2fcb@gregkh/"
},
{
"category": "external",
"summary": "Linux Kernel CVE Announcement CVE-2023-53447",
"url": "https://lore.kernel.org/linux-cve-announce/2025091800-CVE-2023-53447-e0ee@gregkh/"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2025:15585-1 vom 2025-09-30",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/GUHLDYQM4UZOZRCPRIEXRRIGQ4XKRHRT/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:17760 vom 2025-10-13",
"url": "https://access.redhat.com/errata/RHSA-2025:17760"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2025-3038 vom 2025-10-15",
"url": "https://alas.aws.amazon.com/AL2/ALAS2-2025-3038.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2KERNEL-5.4-2025-111 vom 2025-10-14",
"url": "https://alas.aws.amazon.com/AL2/ALAS2KERNEL-5.4-2025-111.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-17760 vom 2025-10-14",
"url": "https://linux.oracle.com/errata/ELSA-2025-17760.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03615-1 vom 2025-10-16",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BVPLWRQN6MVKFQDJSEKN2JP6PMSGIO4Q/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03613-1 vom 2025-10-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022915.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03614-1 vom 2025-10-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022911.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03600-1 vom 2025-10-15",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VHWHH7ZSMFJ6PQZ3CBDGGCWHNBCWD26Z/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03626-1 vom 2025-10-17",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/Z3DYHRRLY43MYRNEEU5SFR4ZRMSPITED/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03634-1 vom 2025-10-17",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022925.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03628-1 vom 2025-10-17",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/O6BEPQBC4GULLYP5G3VVU4ZS37B7I6EV/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:18298 vom 2025-10-20",
"url": "https://access.redhat.com/errata/RHSA-2025:18298"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2025:17760 vom 2025-10-18",
"url": "https://errata.build.resf.org/RLSA-2025:17760"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:18297 vom 2025-10-20",
"url": "https://access.redhat.com/errata/RHSA-2025:18297"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03653-1 vom 2025-10-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022936.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03662-1 vom 2025-10-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022934.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03656-1 vom 2025-10-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022935.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03652-1 vom 2025-10-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022937.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:3684-1 vom 2025-10-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022950.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-18297 vom 2025-10-20",
"url": "https://linux.oracle.com/errata/ELSA-2025-18297.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:3703-1 vom 2025-10-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022953.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:3716-1 vom 2025-10-22",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022962.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:3751-1 vom 2025-10-23",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NMB6RXALFYMRMM4UK7R54RAQRCZJEBH4/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:3761-1 vom 2025-10-23",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/MLTPAKCOQABZPEY7O35CI42PHK5WNIUQ/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20861-1 vom 2025-10-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023019.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2025:18297 vom 2025-10-26",
"url": "https://errata.build.resf.org/RLSA-2025:18297"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20851-1 vom 2025-10-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023025.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:19102 vom 2025-10-27",
"url": "https://access.redhat.com/errata/RHSA-2025:19102"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:19103 vom 2025-10-27",
"url": "https://access.redhat.com/errata/RHSA-2025:19103"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2025:18298 vom 2025-10-26",
"url": "https://errata.build.resf.org/RLSA-2025:18298"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20870-1 vom 2025-10-27",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023060.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-19102 vom 2025-10-28",
"url": "https://linux.oracle.com/errata/ELSA-2025-19102.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:19104 vom 2025-10-27",
"url": "https://access.redhat.com/errata/RHSA-2025:19104"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:19268 vom 2025-10-29",
"url": "https://access.redhat.com/errata/RHSA-2025:19268"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20898-1 vom 2025-10-30",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023116.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2025:19102 vom 2025-11-02",
"url": "https://errata.build.resf.org/RLSA-2025:19102"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2025:19103 vom 2025-11-02",
"url": "https://errata.build.resf.org/RLSA-2025:19103"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:19492 vom 2025-11-03",
"url": "https://access.redhat.com/errata/RHSA-2025:19492"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2025-390 vom 2025-11-05",
"url": "https://www.dell.com/support/kbdoc/000385230"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:19886 vom 2025-11-06",
"url": "https://access.redhat.com/errata/RHSA-2025:19886"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:21082 vom 2025-11-12",
"url": "https://access.redhat.com/errata/RHSA-2025:21082"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:21083 vom 2025-11-12",
"url": "https://access.redhat.com/errata/RHSA-2025:21083"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4057-1 vom 2025-11-11",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023254.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:21051 vom 2025-11-12",
"url": "https://access.redhat.com/errata/RHSA-2025:21051"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:21084 vom 2025-11-12",
"url": "https://access.redhat.com/errata/RHSA-2025:21084"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:21091 vom 2025-11-12",
"url": "https://access.redhat.com/errata/RHSA-2025:21091"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:21063 vom 2025-11-12",
"url": "https://access.redhat.com/errata/RHSA-2025:21063"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:21128 vom 2025-11-12",
"url": "https://access.redhat.com/errata/RHSA-2025:21128"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:21136 vom 2025-11-12",
"url": "https://access.redhat.com/errata/RHSA-2025:21136"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:21112 vom 2025-11-12",
"url": "https://access.redhat.com/errata/RHSA-2025:21112"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7250971 vom 2025-11-12",
"url": "https://www.ibm.com/support/pages/node/7250971"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4123-1 vom 2025-11-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023296.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4135-1 vom 2025-11-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023300.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4132-1 vom 2025-11-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023302.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4141-1 vom 2025-11-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023304.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4213-1 vom 2025-11-24",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BMIF3SMKFBUMCZYFRUM2RM62ZVJXJF7B/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22006 vom 2025-11-25",
"url": "https://access.redhat.com/errata/RHSA-2025:22006"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4189-1 vom 2025-11-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023334.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4188-1 vom 2025-11-24",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/LVPUJWNDCBFGM2O2EFX4S5QBPKDARVQ7/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4203-1 vom 2025-11-24",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VT2ZCGNR6WCCH4AKUSKN3OANW5W3U3LW/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22066 vom 2025-11-25",
"url": "https://access.redhat.com/errata/RHSA-2025:22066"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22072 vom 2025-11-25",
"url": "https://access.redhat.com/errata/RHSA-2025:22072"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22087 vom 2025-11-25",
"url": "https://access.redhat.com/errata/RHSA-2025:22087"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22095 vom 2025-11-25",
"url": "https://access.redhat.com/errata/RHSA-2025:22095"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22124 vom 2025-11-25",
"url": "https://access.redhat.com/errata/RHSA-2025:22124"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-21926 vom 2025-11-26",
"url": "http://linux.oracle.com/errata/ELSA-2025-21926.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-21469 vom 2025-11-27",
"url": "https://linux.oracle.com/errata/ELSA-2025-21469.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-21112 vom 2025-11-27",
"url": "https://linux.oracle.com/errata/ELSA-2025-21112.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4285-1 vom 2025-11-28",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023421.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4315-1 vom 2025-12-01",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023442.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22752 vom 2025-12-04",
"url": "https://access.redhat.com/errata/RHSA-2025:22752"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22800 vom 2025-12-08",
"url": "https://access.redhat.com/errata/RHSA-2025:22800"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22801 vom 2025-12-08",
"url": "https://access.redhat.com/errata/RHSA-2025:22801"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7253912 vom 2025-12-05",
"url": "https://www.ibm.com/support/pages/node/7253912"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-22801 vom 2025-12-09",
"url": "http://linux.oracle.com/errata/ELSA-2025-22801.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22910 vom 2025-12-09",
"url": "https://access.redhat.com/errata/RHSA-2025:22910"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22914 vom 2025-12-09",
"url": "https://access.redhat.com/errata/RHSA-2025:22914"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:22998 vom 2025-12-10",
"url": "https://access.redhat.com/errata/RHSA-2025:22998"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2025:22800 vom 2025-12-13",
"url": "https://errata.build.resf.org/RLSA-2025:22800"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2025:22801 vom 2025-12-13",
"url": "https://errata.build.resf.org/RLSA-2025:22801"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-21063 vom 2025-12-17",
"url": "https://linux.oracle.com/errata/ELSA-2025-21063.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:23427 vom 2025-12-17",
"url": "https://access.redhat.com/errata/RHSA-2025:23427"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:23463 vom 2025-12-17",
"url": "https://access.redhat.com/errata/RHSA-2025:23463"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7255154 vom 2025-12-17",
"url": "https://www.ibm.com/support/pages/node/7255154"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:23947 vom 2025-12-22",
"url": "https://access.redhat.com/errata/RHSA-2025:23947"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:23960 vom 2025-12-22",
"url": "https://access.redhat.com/errata/RHSA-2025:23960"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4515-1 vom 2025-12-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-December/023647.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:0536 vom 2026-01-14",
"url": "https://access.redhat.com/errata/RHSA-2026:0536"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2026:0533 vom 2026-01-14",
"url": "https://access.redhat.com/errata/RHSA-2026:0533"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0166-1 vom 2026-01-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023794.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0154-1 vom 2026-01-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023797.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0163-1 vom 2026-01-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023795.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0155-1 vom 2026-01-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023796.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0174-1 vom 2026-01-20",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/EYNRLMEYZG4OCUWVVR7BLL22PT3MTAV7/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0168-1 vom 2026-01-20",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/DUZFNORTIL7FT4JAMWNYAWMBHYUP24BR/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0176-1 vom 2026-01-20",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/PSMTB6JYSBEU2CF3OD7SW3ZIJGKEKBZA/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0173-1 vom 2026-01-20",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/C7EZZMG5MOJB6A2OZ4KLGVN4SVE4LWEL/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0184-1 vom 2026-01-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023822.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0187-1 vom 2026-01-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023824.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0186-1 vom 2026-01-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023825.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0180-1 vom 2026-01-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023805.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0191-1 vom 2026-01-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023827.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0206-1 vom 2026-01-21",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023836.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0246-1 vom 2026-01-22",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-January/023844.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-22910 vom 2026-01-29",
"url": "https://linux.oracle.com/errata/ELSA-2025-22910.html"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2026-030 vom 2026-01-30",
"url": "https://www.dell.com/support/kbdoc/de-de/000421570/dsa-2026-030-security-update-for-dell-networker-vproxy-multiple-third-party-component-vulnerabilities"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-23947 vom 2026-01-30",
"url": "https://linux.oracle.com/errata/ELSA-2025-23947.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-6127 vom 2026-02-10",
"url": "https://lists.debian.org/debian-security-announce/2026/msg00036.html"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-4476 vom 2026-02-11",
"url": "https://lists.debian.org/debian-lts-announce/2026/02/msg00017.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0474-1 vom 2026-02-12",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024140.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20332-1 vom 2026-02-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024163.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20316-1 vom 2026-02-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024178.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0496-1 vom 2026-02-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024158.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-0755 vom 2026-02-18",
"url": "https://linux.oracle.com/errata/ELSA-2026-0755.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:0617-1 vom 2026-02-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024378.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-1581 vom 2026-03-04",
"url": "https://linux.oracle.com/errata/ELSA-2026-1581.html"
}
],
"source_lang": "en-US",
"title": "Linux Kernel: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2026-03-04T23:00:00.000+00:00",
"generator": {
"date": "2026-03-05T09:20:22.525+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2025-2092",
"initial_release_date": "2025-09-18T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-09-18T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-09-30T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von openSUSE aufgenommen"
},
{
"date": "2025-10-12T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-10-14T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Amazon und Oracle Linux aufgenommen"
},
{
"date": "2025-10-15T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-10-16T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-10-19T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von SUSE, Red Hat und Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2025-10-20T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von SUSE und Oracle Linux aufgenommen"
},
{
"date": "2025-10-21T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-10-23T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-10-26T23:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von SUSE, Rocky Enterprise Software Foundation und Red Hat aufgenommen"
},
{
"date": "2025-10-27T23:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von SUSE, Oracle Linux und Red Hat aufgenommen"
},
{
"date": "2025-10-29T23:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-10-30T23:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-11-02T23:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2025-11-03T23:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-11-04T23:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2025-11-05T23:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-11-11T23:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Red Hat und SUSE aufgenommen"
},
{
"date": "2025-11-12T23:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Red Hat und IBM aufgenommen"
},
{
"date": "2025-11-17T23:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-11-18T23:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-11-19T23:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-11-24T23:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von SUSE und Red Hat aufgenommen"
},
{
"date": "2025-11-25T23:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-11-26T23:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-11-27T23:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-12-01T23:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-12-04T23:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-12-07T23:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von Red Hat und IBM aufgenommen"
},
{
"date": "2025-12-08T23:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-12-09T23:00:00.000+00:00",
"number": "32",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-12-14T23:00:00.000+00:00",
"number": "33",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2025-12-16T23:00:00.000+00:00",
"number": "34",
"summary": "Neue Updates von Oracle Linux und Red Hat aufgenommen"
},
{
"date": "2025-12-17T23:00:00.000+00:00",
"number": "35",
"summary": "Neue Updates von Red Hat und IBM aufgenommen"
},
{
"date": "2025-12-22T23:00:00.000+00:00",
"number": "36",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-12-23T23:00:00.000+00:00",
"number": "37",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-01-13T23:00:00.000+00:00",
"number": "38",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2026-01-19T23:00:00.000+00:00",
"number": "39",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-01-20T23:00:00.000+00:00",
"number": "40",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-01-21T23:00:00.000+00:00",
"number": "41",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-01-22T23:00:00.000+00:00",
"number": "42",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-01-29T23:00:00.000+00:00",
"number": "43",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2026-02-01T23:00:00.000+00:00",
"number": "44",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2026-02-09T23:00:00.000+00:00",
"number": "45",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2026-02-11T23:00:00.000+00:00",
"number": "46",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2026-02-12T23:00:00.000+00:00",
"number": "47",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-02-15T23:00:00.000+00:00",
"number": "48",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-02-18T23:00:00.000+00:00",
"number": "49",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2026-02-24T23:00:00.000+00:00",
"number": "50",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-03-04T23:00:00.000+00:00",
"number": "51",
"summary": "Neue Updates von Oracle Linux aufgenommen"
}
],
"status": "final",
"version": "51"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vProxy \u003c19.14",
"product": {
"name": "Dell NetWorker vProxy \u003c19.14",
"product_id": "T050451"
}
},
{
"category": "product_version",
"name": "vProxy 19.14",
"product": {
"name": "Dell NetWorker vProxy 19.14",
"product_id": "T050451-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:vproxy__19.14"
}
}
}
],
"category": "product_name",
"name": "NetWorker"
},
{
"branches": [
{
"category": "product_version_range",
"name": "Appliance \u003c5.32.00.18",
"product": {
"name": "Dell Secure Connect Gateway Appliance \u003c5.32.00.18",
"product_id": "T048301"
}
},
{
"category": "product_version",
"name": "Appliance 5.32.00.18",
"product": {
"name": "Dell Secure Connect Gateway Appliance 5.32.00.18",
"product_id": "T048301-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:dell:secure_connect_gateway:appliance__5.32.00.18"
}
}
}
],
"category": "product_name",
"name": "Secure Connect Gateway"
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "IBM QRadar SIEM",
"product": {
"name": "IBM QRadar SIEM",
"product_id": "T021415",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:-"
}
}
},
{
"category": "product_version_range",
"name": "\u003c7.5.0 UP14 IF01",
"product": {
"name": "IBM QRadar SIEM \u003c7.5.0 UP14 IF01",
"product_id": "T048556"
}
},
{
"category": "product_version",
"name": "7.5.0 UP14 IF01",
"product": {
"name": "IBM QRadar SIEM 7.5.0 UP14 IF01",
"product_id": "T048556-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up14_if01"
}
}
},
{
"category": "product_version_range",
"name": "\u003c7.5.0 UP14 IF03",
"product": {
"name": "IBM QRadar SIEM \u003c7.5.0 UP14 IF03",
"product_id": "T049499"
}
},
{
"category": "product_version",
"name": "7.5.0 UP14 IF03",
"product": {
"name": "IBM QRadar SIEM 7.5.0 UP14 IF03",
"product_id": "T049499-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up14_if03"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Open Source Linux Kernel",
"product": {
"name": "Open Source Linux Kernel",
"product_id": "T034436",
"product_identification_helper": {
"cpe": "cpe:/o:linux:linux_kernel:-"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
},
{
"category": "product_name",
"name": "SUSE openSUSE",
"product": {
"name": "SUSE openSUSE",
"product_id": "T027843",
"product_identification_helper": {
"cpe": "cpe:/o:suse:opensuse:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-50375",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50375"
},
{
"cve": "CVE-2022-50376",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50376"
},
{
"cve": "CVE-2022-50377",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50377"
},
{
"cve": "CVE-2022-50378",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50378"
},
{
"cve": "CVE-2022-50379",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50379"
},
{
"cve": "CVE-2022-50380",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50380"
},
{
"cve": "CVE-2022-50381",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50381"
},
{
"cve": "CVE-2022-50382",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50382"
},
{
"cve": "CVE-2022-50383",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50383"
},
{
"cve": "CVE-2022-50384",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50384"
},
{
"cve": "CVE-2022-50385",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50385"
},
{
"cve": "CVE-2022-50386",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50386"
},
{
"cve": "CVE-2022-50387",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50387"
},
{
"cve": "CVE-2022-50388",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50388"
},
{
"cve": "CVE-2022-50389",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50389"
},
{
"cve": "CVE-2022-50390",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50390"
},
{
"cve": "CVE-2022-50391",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50391"
},
{
"cve": "CVE-2022-50392",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50392"
},
{
"cve": "CVE-2022-50393",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50393"
},
{
"cve": "CVE-2022-50394",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50394"
},
{
"cve": "CVE-2022-50395",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50395"
},
{
"cve": "CVE-2022-50396",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50396"
},
{
"cve": "CVE-2022-50397",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50397"
},
{
"cve": "CVE-2022-50398",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50398"
},
{
"cve": "CVE-2022-50399",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50399"
},
{
"cve": "CVE-2022-50400",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50400"
},
{
"cve": "CVE-2022-50401",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50401"
},
{
"cve": "CVE-2022-50402",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50402"
},
{
"cve": "CVE-2022-50403",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50403"
},
{
"cve": "CVE-2022-50404",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50404"
},
{
"cve": "CVE-2022-50405",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50405"
},
{
"cve": "CVE-2022-50406",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50406"
},
{
"cve": "CVE-2022-50407",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50407"
},
{
"cve": "CVE-2022-50408",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50408"
},
{
"cve": "CVE-2022-50409",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50409"
},
{
"cve": "CVE-2022-50410",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50410"
},
{
"cve": "CVE-2022-50411",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50411"
},
{
"cve": "CVE-2022-50412",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50412"
},
{
"cve": "CVE-2022-50413",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50413"
},
{
"cve": "CVE-2022-50414",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50414"
},
{
"cve": "CVE-2022-50415",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50415"
},
{
"cve": "CVE-2022-50416",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50416"
},
{
"cve": "CVE-2022-50417",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50417"
},
{
"cve": "CVE-2022-50418",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50418"
},
{
"cve": "CVE-2022-50419",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2022-50419"
},
{
"cve": "CVE-2023-53369",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53369"
},
{
"cve": "CVE-2023-53370",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53370"
},
{
"cve": "CVE-2023-53371",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53371"
},
{
"cve": "CVE-2023-53372",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53372"
},
{
"cve": "CVE-2023-53373",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53373"
},
{
"cve": "CVE-2023-53374",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53374"
},
{
"cve": "CVE-2023-53375",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53375"
},
{
"cve": "CVE-2023-53376",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53376"
},
{
"cve": "CVE-2023-53377",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53377"
},
{
"cve": "CVE-2023-53378",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53378"
},
{
"cve": "CVE-2023-53379",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53379"
},
{
"cve": "CVE-2023-53380",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53380"
},
{
"cve": "CVE-2023-53381",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53381"
},
{
"cve": "CVE-2023-53382",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53382"
},
{
"cve": "CVE-2023-53383",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53383"
},
{
"cve": "CVE-2023-53384",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53384"
},
{
"cve": "CVE-2023-53385",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53385"
},
{
"cve": "CVE-2023-53386",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53386"
},
{
"cve": "CVE-2023-53387",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53387"
},
{
"cve": "CVE-2023-53388",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53388"
},
{
"cve": "CVE-2023-53389",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53389"
},
{
"cve": "CVE-2023-53390",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53390"
},
{
"cve": "CVE-2023-53391",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53391"
},
{
"cve": "CVE-2023-53392",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53392"
},
{
"cve": "CVE-2023-53393",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53393"
},
{
"cve": "CVE-2023-53394",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53394"
},
{
"cve": "CVE-2023-53395",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53395"
},
{
"cve": "CVE-2023-53396",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53396"
},
{
"cve": "CVE-2023-53397",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53397"
},
{
"cve": "CVE-2023-53398",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53398"
},
{
"cve": "CVE-2023-53399",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53399"
},
{
"cve": "CVE-2023-53400",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53400"
},
{
"cve": "CVE-2023-53401",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53401"
},
{
"cve": "CVE-2023-53402",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53402"
},
{
"cve": "CVE-2023-53403",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53403"
},
{
"cve": "CVE-2023-53404",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53404"
},
{
"cve": "CVE-2023-53405",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53405"
},
{
"cve": "CVE-2023-53406",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53406"
},
{
"cve": "CVE-2023-53407",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53407"
},
{
"cve": "CVE-2023-53408",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53408"
},
{
"cve": "CVE-2023-53409",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53409"
},
{
"cve": "CVE-2023-53410",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53410"
},
{
"cve": "CVE-2023-53411",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53411"
},
{
"cve": "CVE-2023-53412",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53412"
},
{
"cve": "CVE-2023-53413",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53413"
},
{
"cve": "CVE-2023-53414",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53414"
},
{
"cve": "CVE-2023-53415",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53415"
},
{
"cve": "CVE-2023-53416",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53416"
},
{
"cve": "CVE-2023-53417",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53417"
},
{
"cve": "CVE-2023-53418",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53418"
},
{
"cve": "CVE-2023-53419",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53419"
},
{
"cve": "CVE-2023-53420",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53420"
},
{
"cve": "CVE-2023-53421",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53421"
},
{
"cve": "CVE-2023-53422",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53422"
},
{
"cve": "CVE-2023-53423",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53423"
},
{
"cve": "CVE-2023-53424",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53424"
},
{
"cve": "CVE-2023-53425",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53425"
},
{
"cve": "CVE-2023-53426",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53426"
},
{
"cve": "CVE-2023-53427",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53427"
},
{
"cve": "CVE-2023-53428",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53428"
},
{
"cve": "CVE-2023-53429",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53429"
},
{
"cve": "CVE-2023-53430",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53430"
},
{
"cve": "CVE-2023-53431",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53431"
},
{
"cve": "CVE-2023-53432",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53432"
},
{
"cve": "CVE-2023-53433",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53433"
},
{
"cve": "CVE-2023-53434",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53434"
},
{
"cve": "CVE-2023-53435",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53435"
},
{
"cve": "CVE-2023-53436",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53436"
},
{
"cve": "CVE-2023-53437",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53437"
},
{
"cve": "CVE-2023-53438",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53438"
},
{
"cve": "CVE-2023-53439",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53439"
},
{
"cve": "CVE-2023-53440",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53440"
},
{
"cve": "CVE-2023-53441",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53441"
},
{
"cve": "CVE-2023-53442",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53442"
},
{
"cve": "CVE-2023-53443",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53443"
},
{
"cve": "CVE-2023-53444",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53444"
},
{
"cve": "CVE-2023-53445",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53445"
},
{
"cve": "CVE-2023-53446",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53446"
},
{
"cve": "CVE-2023-53447",
"product_status": {
"known_affected": [
"T034436",
"67646",
"T004914",
"T050451",
"T032255",
"2951",
"T002207",
"T021415",
"T027843",
"T049499",
"398363",
"T048556",
"T048301"
]
},
"release_date": "2025-09-18T22:00:00.000+00:00",
"title": "CVE-2023-53447"
}
]
}
BDU:2025-12976
Vulnerability from fstec - Published: 30.03.2023
VLAI Severity ?
Title
Уязвимость функции qrtr_recvmsg() ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании
Description
Уязвимость функции qrtr_recvmsg() ядра операционной системы Linux связана с использованием памяти после её освобождения. Эксплуатация уязвимости может позволить нарушителю вызвать отказ в обслуживании
Severity ?
Vendor
Сообщество свободного программного обеспечения
Software Name
Debian GNU/Linux, Linux
Software Version
11 (Debian GNU/Linux), до 6.3 (Linux), от 5.6 до 5.10.178 (Linux), от 5.15 до 5.15.107 (Linux), от 6.1 до 6.1.24 (Linux), от 6.2 до 6.2.11 (Linux)
Possible Mitigations
В условиях отсутствия обновлений безопасности от производителя рекомендуется придерживаться "Рекомендаций по безопасной настройке операционных систем LINUX", изложенных в методическом документе ФСТЭК России, утверждённом 25 декабря 2022 года.
Использование рекомендаций:
Для Linux:
https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53445-7b18@gregkh/
https://git.kernel.org/stable/c/44d807320000db0d0013372ad39b53e12d52f758
https://git.kernel.org/stable/c/48a07f6e00d305597396da4d7494b81cec05b9d3
https://git.kernel.org/stable/c/98a9cd82c541ef6cbdb829cd6c05cbbb471e373c
https://git.kernel.org/stable/c/aa95efa187b4114075f312b3c4680d050b56fdec
https://git.kernel.org/stable/c/b9ba5906c42089f8e1d0001b7b50a7940f086cbb
Для Debian GNU/Linux:
https://security-tracker.debian.org/tracker/CVE-2023-53445
Reference
https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53445-7b18@gregkh/
https://git.kernel.org/stable/c/44d807320000db0d0013372ad39b53e12d52f758
https://git.kernel.org/stable/c/48a07f6e00d305597396da4d7494b81cec05b9d3
https://git.kernel.org/stable/c/98a9cd82c541ef6cbdb829cd6c05cbbb471e373c
https://git.kernel.org/stable/c/aa95efa187b4114075f312b3c4680d050b56fdec
https://git.kernel.org/stable/c/b9ba5906c42089f8e1d0001b7b50a7940f086cbb
https://security-tracker.debian.org/tracker/CVE-2023-53445
https://access.redhat.com/security/cve/cve-2023-53445
CWE
CWE-416, CWE-664
{
"CVSS 2.0": "AV:L/AC:L/Au:N/C:N/I:N/A:C",
"CVSS 3.0": "AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "11 (Debian GNU/Linux), \u0434\u043e 6.3 (Linux), \u043e\u0442 5.6 \u0434\u043e 5.10.178 (Linux), \u043e\u0442 5.15 \u0434\u043e 5.15.107 (Linux), \u043e\u0442 6.1 \u0434\u043e 6.1.24 (Linux), \u043e\u0442 6.2 \u0434\u043e 6.2.11 (Linux)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0412 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u044f \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043e\u0442 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043f\u0440\u0438\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0442\u044c\u0441\u044f \"\u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u043e \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0439 \u043d\u0430\u0441\u0442\u0440\u043e\u0439\u043a\u0435 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c LINUX\", \u0438\u0437\u043b\u043e\u0436\u0435\u043d\u043d\u044b\u0445 \u0432 \u043c\u0435\u0442\u043e\u0434\u0438\u0447\u0435\u0441\u043a\u043e\u043c \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0435 \u0424\u0421\u0422\u042d\u041a \u0420\u043e\u0441\u0441\u0438\u0438, \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0451\u043d\u043d\u043e\u043c 25 \u0434\u0435\u043a\u0430\u0431\u0440\u044f 2022 \u0433\u043e\u0434\u0430.\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439:\n\u0414\u043b\u044f Linux:\nhttps://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53445-7b18@gregkh/\nhttps://git.kernel.org/stable/c/44d807320000db0d0013372ad39b53e12d52f758\t\nhttps://git.kernel.org/stable/c/48a07f6e00d305597396da4d7494b81cec05b9d3\t\nhttps://git.kernel.org/stable/c/98a9cd82c541ef6cbdb829cd6c05cbbb471e373c\t\nhttps://git.kernel.org/stable/c/aa95efa187b4114075f312b3c4680d050b56fdec\t\nhttps://git.kernel.org/stable/c/b9ba5906c42089f8e1d0001b7b50a7940f086cbb\n\n\u0414\u043b\u044f Debian GNU/Linux:\nhttps://security-tracker.debian.org/tracker/CVE-2023-53445",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "30.03.2023",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "15.10.2025",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "15.10.2025",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2025-12976",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2023-53445",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Debian GNU/Linux, Linux",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 11 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u0434\u043e 6.3 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 5.6 \u0434\u043e 5.10.178 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 5.15 \u0434\u043e 5.15.107 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 6.1 \u0434\u043e 6.1.24 , \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Linux \u043e\u0442 6.2 \u0434\u043e 6.2.11 ",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 qrtr_recvmsg() \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u043f\u043e\u0441\u043b\u0435 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u044f (CWE-416), \u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u044b\u0439 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u0440\u0435\u0441\u0443\u0440\u0441\u0430 \u0432 \u043f\u0435\u0440\u0438\u043e\u0434 \u0435\u0433\u043e \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u044f (CWE-664)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0444\u0443\u043d\u043a\u0446\u0438\u0438 qrtr_recvmsg() \u044f\u0434\u0440\u0430 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b Linux \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u043f\u0430\u043c\u044f\u0442\u0438 \u043f\u043e\u0441\u043b\u0435 \u0435\u0451 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u044f. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445, \u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://lore.kernel.org/linux-cve-announce/2025091859-CVE-2023-53445-7b18@gregkh/\nhttps://git.kernel.org/stable/c/44d807320000db0d0013372ad39b53e12d52f758\t\nhttps://git.kernel.org/stable/c/48a07f6e00d305597396da4d7494b81cec05b9d3\t\nhttps://git.kernel.org/stable/c/98a9cd82c541ef6cbdb829cd6c05cbbb471e373c\t\nhttps://git.kernel.org/stable/c/aa95efa187b4114075f312b3c4680d050b56fdec\t\nhttps://git.kernel.org/stable/c/b9ba5906c42089f8e1d0001b7b50a7940f086cbb\nhttps://security-tracker.debian.org/tracker/CVE-2023-53445\nhttps://access.redhat.com/security/cve/cve-2023-53445",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-416, CWE-664",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 4,9)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.1 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,2)"
}
GHSA-3W47-QC84-PRWF
Vulnerability from github – Published: 2025-09-18 18:30 – Updated: 2025-12-12 21:31
VLAI?
Details
In the Linux kernel, the following vulnerability has been resolved:
net: qrtr: Fix a refcount bug in qrtr_recvmsg()
Syzbot reported a bug as following:
refcount_t: addition on 0; use-after-free. ... RIP: 0010:refcount_warn_saturate+0x17c/0x1f0 lib/refcount.c:25 ... Call Trace: __refcount_add include/linux/refcount.h:199 [inline] __refcount_inc include/linux/refcount.h:250 [inline] refcount_inc include/linux/refcount.h:267 [inline] kref_get include/linux/kref.h:45 [inline] qrtr_node_acquire net/qrtr/af_qrtr.c:202 [inline] qrtr_node_lookup net/qrtr/af_qrtr.c:398 [inline] qrtr_send_resume_tx net/qrtr/af_qrtr.c:1003 [inline] qrtr_recvmsg+0x85f/0x990 net/qrtr/af_qrtr.c:1070 sock_recvmsg_nosec net/socket.c:1017 [inline] sock_recvmsg+0xe2/0x160 net/socket.c:1038 qrtr_ns_worker+0x170/0x1700 net/qrtr/ns.c:688 process_one_work+0x991/0x15c0 kernel/workqueue.c:2390 worker_thread+0x669/0x1090 kernel/workqueue.c:2537
It occurs in the concurrent scenario of qrtr_recvmsg() and qrtr_endpoint_unregister() as following:
cpu0 cpu1
qrtr_recvmsg qrtr_endpoint_unregister qrtr_send_resume_tx qrtr_node_release qrtr_node_lookup mutex_lock(&qrtr_node_lock) spin_lock_irqsave(&qrtr_nodes_lock, ) refcount_dec_and_test(&node->ref) [node->ref == 0] radix_tree_lookup [node != NULL] __qrtr_node_release qrtr_node_acquire spin_lock_irqsave(&qrtr_nodes_lock, ) kref_get(&node->ref) [WARNING] ... mutex_unlock(&qrtr_node_lock)
Use qrtr_node_lock to protect qrtr_node_lookup() implementation, this is actually improving the protection of node reference.
Severity ?
5.5 (Medium)
{
"affected": [],
"aliases": [
"CVE-2023-53445"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-09-18T16:15:48Z",
"severity": "MODERATE"
},
"details": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qrtr: Fix a refcount bug in qrtr_recvmsg()\n\nSyzbot reported a bug as following:\n\nrefcount_t: addition on 0; use-after-free.\n...\nRIP: 0010:refcount_warn_saturate+0x17c/0x1f0 lib/refcount.c:25\n...\nCall Trace:\n \u003cTASK\u003e\n __refcount_add include/linux/refcount.h:199 [inline]\n __refcount_inc include/linux/refcount.h:250 [inline]\n refcount_inc include/linux/refcount.h:267 [inline]\n kref_get include/linux/kref.h:45 [inline]\n qrtr_node_acquire net/qrtr/af_qrtr.c:202 [inline]\n qrtr_node_lookup net/qrtr/af_qrtr.c:398 [inline]\n qrtr_send_resume_tx net/qrtr/af_qrtr.c:1003 [inline]\n qrtr_recvmsg+0x85f/0x990 net/qrtr/af_qrtr.c:1070\n sock_recvmsg_nosec net/socket.c:1017 [inline]\n sock_recvmsg+0xe2/0x160 net/socket.c:1038\n qrtr_ns_worker+0x170/0x1700 net/qrtr/ns.c:688\n process_one_work+0x991/0x15c0 kernel/workqueue.c:2390\n worker_thread+0x669/0x1090 kernel/workqueue.c:2537\n\nIt occurs in the concurrent scenario of qrtr_recvmsg() and\nqrtr_endpoint_unregister() as following:\n\n\tcpu0\t\t\t\t\tcpu1\nqrtr_recvmsg\t\t\t\tqrtr_endpoint_unregister\nqrtr_send_resume_tx\t\t\tqrtr_node_release\nqrtr_node_lookup\t\t\tmutex_lock(\u0026qrtr_node_lock)\nspin_lock_irqsave(\u0026qrtr_nodes_lock, )\trefcount_dec_and_test(\u0026node-\u003eref) [node-\u003eref == 0]\nradix_tree_lookup [node != NULL]\t__qrtr_node_release\nqrtr_node_acquire\t\t\tspin_lock_irqsave(\u0026qrtr_nodes_lock, )\nkref_get(\u0026node-\u003eref) [WARNING]\t\t...\n\t\t\t\t\tmutex_unlock(\u0026qrtr_node_lock)\n\nUse qrtr_node_lock to protect qrtr_node_lookup() implementation, this\nis actually improving the protection of node reference.",
"id": "GHSA-3w47-qc84-prwf",
"modified": "2025-12-12T21:31:31Z",
"published": "2025-09-18T18:30:28Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53445"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/44d807320000db0d0013372ad39b53e12d52f758"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/48a07f6e00d305597396da4d7494b81cec05b9d3"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/98a9cd82c541ef6cbdb829cd6c05cbbb471e373c"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/aa95efa187b4114075f312b3c4680d050b56fdec"
},
{
"type": "WEB",
"url": "https://git.kernel.org/stable/c/b9ba5906c42089f8e1d0001b7b50a7940f086cbb"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
FKIE_CVE-2023-53445
Vulnerability from fkie_nvd - Published: 2025-09-18 16:15 - Updated: 2026-01-14 20:16
Severity ?
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
net: qrtr: Fix a refcount bug in qrtr_recvmsg()
Syzbot reported a bug as following:
refcount_t: addition on 0; use-after-free.
...
RIP: 0010:refcount_warn_saturate+0x17c/0x1f0 lib/refcount.c:25
...
Call Trace:
<TASK>
__refcount_add include/linux/refcount.h:199 [inline]
__refcount_inc include/linux/refcount.h:250 [inline]
refcount_inc include/linux/refcount.h:267 [inline]
kref_get include/linux/kref.h:45 [inline]
qrtr_node_acquire net/qrtr/af_qrtr.c:202 [inline]
qrtr_node_lookup net/qrtr/af_qrtr.c:398 [inline]
qrtr_send_resume_tx net/qrtr/af_qrtr.c:1003 [inline]
qrtr_recvmsg+0x85f/0x990 net/qrtr/af_qrtr.c:1070
sock_recvmsg_nosec net/socket.c:1017 [inline]
sock_recvmsg+0xe2/0x160 net/socket.c:1038
qrtr_ns_worker+0x170/0x1700 net/qrtr/ns.c:688
process_one_work+0x991/0x15c0 kernel/workqueue.c:2390
worker_thread+0x669/0x1090 kernel/workqueue.c:2537
It occurs in the concurrent scenario of qrtr_recvmsg() and
qrtr_endpoint_unregister() as following:
cpu0 cpu1
qrtr_recvmsg qrtr_endpoint_unregister
qrtr_send_resume_tx qrtr_node_release
qrtr_node_lookup mutex_lock(&qrtr_node_lock)
spin_lock_irqsave(&qrtr_nodes_lock, ) refcount_dec_and_test(&node->ref) [node->ref == 0]
radix_tree_lookup [node != NULL] __qrtr_node_release
qrtr_node_acquire spin_lock_irqsave(&qrtr_nodes_lock, )
kref_get(&node->ref) [WARNING] ...
mutex_unlock(&qrtr_node_lock)
Use qrtr_node_lock to protect qrtr_node_lookup() implementation, this
is actually improving the protection of node reference.
References
| URL | Tags | ||
|---|---|---|---|
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/44d807320000db0d0013372ad39b53e12d52f758 | Patch | |
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/48a07f6e00d305597396da4d7494b81cec05b9d3 | Patch | |
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/98a9cd82c541ef6cbdb829cd6c05cbbb471e373c | Patch | |
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/aa95efa187b4114075f312b3c4680d050b56fdec | Patch | |
| 416baaa9-dc9f-4396-8d5f-8c081fb06d67 | https://git.kernel.org/stable/c/b9ba5906c42089f8e1d0001b7b50a7940f086cbb | Patch |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| linux | linux_kernel | * | |
| linux | linux_kernel | * | |
| linux | linux_kernel | * | |
| linux | linux_kernel | * | |
| linux | linux_kernel | 6.3 | |
| linux | linux_kernel | 6.3 | |
| linux | linux_kernel | 6.3 | |
| linux | linux_kernel | 6.3 | |
| linux | linux_kernel | 6.3 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "D24F41C8-D72D-442C-8122-DD0C7229CC1F",
"versionEndExcluding": "5.10.178",
"versionStartIncluding": "5.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6BCC0C73-754E-4985-A087-F74888650709",
"versionEndExcluding": "5.15.107",
"versionStartIncluding": "5.11",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E6EC432F-985F-450F-954E-7EAD42ADA1F8",
"versionEndExcluding": "6.1.24",
"versionStartIncluding": "5.16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"matchCriteriaId": "93C03C9A-798F-4CD5-912F-A436BFA0CC7E",
"versionEndExcluding": "6.2.11",
"versionStartIncluding": "6.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.3:rc1:*:*:*:*:*:*",
"matchCriteriaId": "B8E3B0E8-FA27-4305-87BB-AF6C25B160CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.3:rc2:*:*:*:*:*:*",
"matchCriteriaId": "A47F0FC3-CE52-4BA1-BA51-22F783938431",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.3:rc3:*:*:*:*:*:*",
"matchCriteriaId": "3583026A-27EC-4A4C-850A-83F2AF970673",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.3:rc4:*:*:*:*:*:*",
"matchCriteriaId": "DC271202-7570-4505-89A4-D602D47BFD00",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:6.3:rc5:*:*:*:*:*:*",
"matchCriteriaId": "D413BB6D-4F74-4C7D-9163-47786619EF53",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nnet: qrtr: Fix a refcount bug in qrtr_recvmsg()\n\nSyzbot reported a bug as following:\n\nrefcount_t: addition on 0; use-after-free.\n...\nRIP: 0010:refcount_warn_saturate+0x17c/0x1f0 lib/refcount.c:25\n...\nCall Trace:\n \u003cTASK\u003e\n __refcount_add include/linux/refcount.h:199 [inline]\n __refcount_inc include/linux/refcount.h:250 [inline]\n refcount_inc include/linux/refcount.h:267 [inline]\n kref_get include/linux/kref.h:45 [inline]\n qrtr_node_acquire net/qrtr/af_qrtr.c:202 [inline]\n qrtr_node_lookup net/qrtr/af_qrtr.c:398 [inline]\n qrtr_send_resume_tx net/qrtr/af_qrtr.c:1003 [inline]\n qrtr_recvmsg+0x85f/0x990 net/qrtr/af_qrtr.c:1070\n sock_recvmsg_nosec net/socket.c:1017 [inline]\n sock_recvmsg+0xe2/0x160 net/socket.c:1038\n qrtr_ns_worker+0x170/0x1700 net/qrtr/ns.c:688\n process_one_work+0x991/0x15c0 kernel/workqueue.c:2390\n worker_thread+0x669/0x1090 kernel/workqueue.c:2537\n\nIt occurs in the concurrent scenario of qrtr_recvmsg() and\nqrtr_endpoint_unregister() as following:\n\n\tcpu0\t\t\t\t\tcpu1\nqrtr_recvmsg\t\t\t\tqrtr_endpoint_unregister\nqrtr_send_resume_tx\t\t\tqrtr_node_release\nqrtr_node_lookup\t\t\tmutex_lock(\u0026qrtr_node_lock)\nspin_lock_irqsave(\u0026qrtr_nodes_lock, )\trefcount_dec_and_test(\u0026node-\u003eref) [node-\u003eref == 0]\nradix_tree_lookup [node != NULL]\t__qrtr_node_release\nqrtr_node_acquire\t\t\tspin_lock_irqsave(\u0026qrtr_nodes_lock, )\nkref_get(\u0026node-\u003eref) [WARNING]\t\t...\n\t\t\t\t\tmutex_unlock(\u0026qrtr_node_lock)\n\nUse qrtr_node_lock to protect qrtr_node_lookup() implementation, this\nis actually improving the protection of node reference."
}
],
"id": "CVE-2023-53445",
"lastModified": "2026-01-14T20:16:04.897",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"type": "Secondary"
}
]
},
"published": "2025-09-18T16:15:48.817",
"references": [
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/44d807320000db0d0013372ad39b53e12d52f758"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/48a07f6e00d305597396da4d7494b81cec05b9d3"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/98a9cd82c541ef6cbdb829cd6c05cbbb471e373c"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/aa95efa187b4114075f312b3c4680d050b56fdec"
},
{
"source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"tags": [
"Patch"
],
"url": "https://git.kernel.org/stable/c/b9ba5906c42089f8e1d0001b7b50a7940f086cbb"
}
],
"sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…