Memory Corruption Vulnerability in ath11k WiFi Driver by Linux Kernel
CVE-2023-53315

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 September 2025

What is CVE-2023-53315?

An issue has been identified in the ath11k WiFi driver within the Linux kernel where an invalid RX descriptor from the REO destination ring can lead to memory corruption. This occurs when a descriptor filled with a value of '0' is processed, causing the incorrect SKB to be fetched. The result may eventually lead to a system crash after prolonged usage. To mitigate this risk, changes were made to the IDR (Identifier Resource) allocation, reserving buffer id '0' for error validation and implementing sanity checks prior to processing descriptors.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 866921dc06b94df91acfcf9359b57da943ed99b3

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 3d3f8fe01a01d94a17fe1ae0d2e894049a972717

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 068fd06148fbf0af95bb08dc77cff34ee679fdbc

References

https://git.kernel.org/stable/c/866921dc06b94df91acfcf935...

https://git.kernel.org/stable/c/3d3f8fe01a01d94a17fe1ae0d...

https://git.kernel.org/stable/c/068fd06148fbf0af95bb08dc7...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 16, 2025
Vulnerability Reserved
Sep 16, 2025