CVE-2023-53189
BaseFortify
Publication date: 2025-09-15
Last updated on: 2025-12-02
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | From 3.10.105 (inc) to 4.14.322 (exc) |
| linux | linux_kernel | From 4.15 (inc) to 4.19.291 (exc) |
| linux | linux_kernel | From 4.20 (inc) to 5.4.251 (exc) |
| linux | linux_kernel | From 5.5 (inc) to 5.10.188 (exc) |
| linux | linux_kernel | From 5.11 (inc) to 5.15.121 (exc) |
| linux | linux_kernel | From 5.16 (inc) to 6.1.40 (exc) |
| linux | linux_kernel | From 6.2 (inc) to 6.4.5 (exc) |
| linux | linux_kernel | 6.5 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-191 | The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a reference count underflow issue in the Linux kernel's IPv6 address configuration code (addrconf). Specifically, in the function addrconf_mod_rs_timer(), there is a timing gap where the reference count for an internal device structure (idev) may be decremented without being properly held. This happens if a timer (rs_timer) changes state from pending to not pending, causing the callback function addrconf_rs_timer() to run and decrement the reference count without holding idev, leading to a refcount underflow.
How can this vulnerability impact me? :
The impact of this vulnerability is that it can cause a reference count underflow in the Linux kernel's IPv6 address configuration code. This may lead to memory corruption or instability in the kernel, potentially causing system crashes or unpredictable behavior, which could affect system reliability and security.