Memory Leak in Linux Kernel's NFC Implementation
CVE-2023-53298

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 September 2025

What is CVE-2023-53298?

A memory leak vulnerability exists in the NFC implementation of the Linux kernel. The callback context, responsible for handling APDUs to and from the secure element, may not be released in certain error scenarios, leading to a draining of memory resources. This occurs due to multiple error paths that bypass the function expected to free the associated cb_context. The issue has been mitigated in recent patches, which explicitly free the cb_context on the identified error paths to enhance system stability and security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 5ce3f32b5264b337bfd13a780452a17705307725 < 5321da6d84b87a34eea441677d649c34bd854169

Linux 5ce3f32b5264b337bfd13a780452a17705307725

Linux 5ce3f32b5264b337bfd13a780452a17705307725 < 271eed1736426103335c5aac50f15b0f4d236bc0

References

https://git.kernel.org/stable/c/5321da6d84b87a34eea441677...

https://git.kernel.org/stable/c/af452e35b9e6a87cd49e54a7a...

https://git.kernel.org/stable/c/271eed1736426103335c5aac5...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 16, 2025
Vulnerability Reserved
Sep 16, 2025

JSON

Linux

What is CVE-2023-53298?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.