CVE-2023-53619

Source
https://cve.org/CVERecord?id=CVE-2023-53619
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53619.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-53619
Downstream
Related
Published
2025-10-07T15:19:26.003Z
Modified
2026-07-11T03:55:01.233643992Z
Summary
netfilter: conntrack: Avoid nf_ct_helper_hash uses after free
Details

In the Linux kernel, the following vulnerability has been resolved:

netfilter: conntrack: Avoid nfcthelper_hash uses after free

If nfconntrackinitstart() fails (for example due to a registernfconntrackbpf() failure), the nfconntrackhelperfini() clean-up path frees the nfcthelperhash map.

When built with NFCONNTRACK=y, further netfilter modules (e.g: netfilterconntrackftp) can still be loaded and call nfconntrackhelpersregister(), independently of whether nfconntrack initialized correctly. This accesses the nfcthelperhash dangling pointer and causes a uaf, possibly leading to random memory corruption.

This patch guards nfconntrackhelperregister() from accessing a freed or uninitialized nfcthelperhash pointer and fixes possible uses-after-free when loading a conntrack module.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53619.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
12f7a505331e6b2754684b509f2ac8f0011ce644
Fixed
4ee69c91cb8f9ca144bc0861969e5a1a3c6152a7
Fixed
00716f25f9697d02a0d9bd622575c7c7321ba3d0
Fixed
61c7a5256543ae7d24cd9d21853d514c8632e1e9
Fixed
8289d422f5e484efe4a565fe18e862ecd621c175
Fixed
6f03ce2f1abcb9f9d0511e3659ca6eb60e39f566
Fixed
05561f822f27b9fa88fa5504ddec34bf38833034
Fixed
fce5cc7cbd4b92f979bf02c9ec5fb69aaeba92d7
Fixed
6eef7a2b933885a17679eb8ed0796ddf0ee5309b

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53619.json"

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
3.6.0
Fixed
4.14.322
Type
ECOSYSTEM
Events
Introduced
4.15.0
Fixed
4.19.291
Type
ECOSYSTEM
Events
Introduced
4.20.0
Fixed
5.4.251
Type
ECOSYSTEM
Events
Introduced
5.5.0
Fixed
5.10.188
Type
ECOSYSTEM
Events
Introduced
5.11.0
Fixed
5.15.121
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.39
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.4.4

Database specific

source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53619.json"