CVE-2023-53484
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-10-01

Last updated on: 2025-10-02

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: lib: cpu_rmap: Avoid use after free on rmap->obj array entries When calling irq_set_affinity_notifier() with NULL at the notify argument, it will cause freeing of the glue pointer in the corresponding array entry but will leave the pointer in the array. A subsequent call to free_irq_cpu_rmap() will try to free this entry again leading to possible use after free. Fix that by setting NULL to the array entry and checking that we have non-zero at the array entry when iterating over the array in free_irq_cpu_rmap(). The current code does not suffer from this since there are no cases where irq_set_affinity_notifier(irq, NULL) (note the NULL passed for the notify arg) is called, followed by a call to free_irq_cpu_rmap() so we don't hit and issue. Subsequent patches in this series excersize this flow, hence the required fix.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-10-01
Last Modified
2025-10-02
Generated
2026-06-16
AI Q&A
2025-10-01
EPSS Evaluated
2026-06-14
NVD
CVE-2023-53484
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
linux linux_kernel From 5.15.160 (inc) to 5.16 (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability in the Linux kernel involves a use-after-free issue in the cpu_rmap library. Specifically, when the function irq_set_affinity_notifier() is called with a NULL notify argument, it frees a pointer in an array but leaves the pointer itself in the array. Later, when free_irq_cpu_rmap() is called, it attempts to free the same pointer again, causing a use-after-free condition. The fix involves setting the array entry to NULL after freeing and checking for non-NULL entries before freeing to prevent double free.

Impact Analysis

This vulnerability can lead to a use-after-free condition in the Linux kernel, which may cause system instability, crashes, or potentially allow an attacker to execute arbitrary code or escalate privileges if exploited. However, the current code does not trigger this issue because the problematic function call sequence does not occur in practice.

Mitigation Strategies

Apply the patch or update to the fixed version of the Linux kernel that addresses the use-after-free issue in the cpu_rmap library. Avoid calling irq_set_affinity_notifier() with a NULL notify argument followed by free_irq_cpu_rmap() until the fix is applied.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2023-53484. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart