Memory Leak Vulnerability in Linux Kernel's UBIFS Module
CVE-2023-53278

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 September 2025

What is CVE-2023-53278?

A memory leak vulnerability has been identified in the UBIFS module of the Linux kernel. When the module is loaded using 'insmod ubifs.ko', it can result in unreferenced memory objects that are not properly cleaned up. This issue arises particularly when the 'kset_register()' function encounters a failure, and the necessary cleanup functions are not called. This flaw can lead to excessive memory consumption over time, ultimately impacting the system's performance and stability. It is essential for users of affected kernel versions to apply security patches to mitigate this issue.

Affected Version(s)

Linux 2e3cbf425804fb44a005e252f88f93dff108c911 < 1c5fdf2d4647219d2267ccb08c7f2c7095bf3450

Linux 2e3cbf425804fb44a005e252f88f93dff108c911

Linux 2e3cbf425804fb44a005e252f88f93dff108c911 < 203a55f04f66eea1a1ca7e5a302a7f5c99c62327

References

https://git.kernel.org/stable/c/1c5fdf2d4647219d2267ccb08...
https://git.kernel.org/stable/c/d42c2b18c42da7378e67b6414...
https://git.kernel.org/stable/c/203a55f04f66eea1a1ca7e5a3...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2023-53278 : Memory Leak Vulnerability in Linux Kernel's UBIFS Module