Linux Kernel PowerPC Vulnerability Affecting IBM Power9 Architecture
CVE-2023-53326

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 September 2025

What is CVE-2023-53326?

A vulnerability has been identified in the Linux kernel affecting PowerPC architecture where the powerpc subsystem mishandles a NULL pt_regs during task execution. This oversight can lead to a system crash when an IO worker attempts to generate a core dump, resulting in a kernel NULL pointer dereference. The underlying issue arises when PF_IO_WORKER is created, yet it lacks the proper pt_regs setup. This could potentially expose systems to operational instability. Proper validation checks for pt_regs need to be implemented to prevent this failure from occurring.

Affected Version(s)

Linux fa439810cc1b3c927ec24ede17d02467e1b143a1 < 80a4200d51e5a7e046f4a90f5faa5bafd5a60c58

Linux fa439810cc1b3c927ec24ede17d02467e1b143a1 < 7624973bc15b76d000e8e6f9b8080fcb76d36595

Linux fa439810cc1b3c927ec24ede17d02467e1b143a1 < 064a1c7b0f8403260d77627e62424a72ca26cee2

References

https://git.kernel.org/stable/c/80a4200d51e5a7e046f4a90f5...

https://git.kernel.org/stable/c/7624973bc15b76d000e8e6f9b...

https://git.kernel.org/stable/c/064a1c7b0f8403260d77627e6...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 16, 2025
Vulnerability Reserved
Sep 16, 2025