CVE-2023-53484
- Source
- https://cve.org/CVERecord?id=CVE-2023-53484
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53484.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-53484
- Downstream
- Related
- Published
- 2025-10-01T11:42:52.590Z
- Modified
- 2026-05-28T03:53:47.089118220Z
- Summary
- lib: cpu_rmap: Avoid use after free on rmap->obj array entries
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
lib: cpu_rmap: Avoid use after free on rmap->obj array entries
When calling irqsetaffinitynotifier() with NULL at the notify argument, it will cause freeing of the glue pointer in the corresponding array entry but will leave the pointer in the array. A subsequent call to freeirqcpurmap() will try to free this entry again leading to possible use after free.
Fix that by setting NULL to the array entry and checking that we have non-zero at the array entry when iterating over the array in freeirqcpu_rmap().
The current code does not suffer from this since there are no cases where irqsetaffinitynotifier(irq, NULL) (note the NULL passed for the notify arg) is called, followed by a call to freeirqcpurmap() so we don't hit and issue. Subsequent patches in this series excersize this flow, hence the required fix.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53484.json" }- References
-
- https://git.kernel.org/stable/c/4e0473f1060aa49621d40a113afde24818101d37
- https://git.kernel.org/stable/c/67bca5f1d644f4e79b694abd8052a177de81c37f
- https://git.kernel.org/stable/c/981f339d2905b6a92ef59358158b326493aecac5
- https://git.kernel.org/stable/c/c6ed54dd90698dc0744d669524cc1c122ded8a16
- https://git.kernel.org/stable/c/c9115f49cf260d24d8b5f2d9a4b63cb31a627bb4
- https://git.kernel.org/stable/c/cc2d2b3dbfb0ba57bc027fb7e1121250c50e4000
- https://git.kernel.org/stable/c/d1308bd0b24cb1d78fa2747d5fa3e055cc628a48
- https://git.kernel.org/stable/c/f748e15253833b771acbede14ea98f50831ac289
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53484.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-53484
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced896f97ea95c1d29c0520ee0766b66b7f64cb967cFixed981f339d2905b6a92ef59358158b326493aecac5Fixedd1308bd0b24cb1d78fa2747d5fa3e055cc628a48Fixedcc2d2b3dbfb0ba57bc027fb7e1121250c50e4000Fixedf748e15253833b771acbede14ea98f50831ac289Fixedc6ed54dd90698dc0744d669524cc1c122ded8a16Fixedc9115f49cf260d24d8b5f2d9a4b63cb31a627bb4Fixed67bca5f1d644f4e79b694abd8052a177de81c37fFixed4e0473f1060aa49621d40a113afde24818101d37
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced3.8.0Fixed4.14.316
- Type
- ECOSYSTEM
- Events
-
Introduced4.15.0Fixed4.19.284
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.244
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.181
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.113
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.30
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.3.4