Memory Leak Vulnerability in Linux Kernel Related to cfctrl_linkup_request()
CVE-2023-53330

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 September 2025

What is CVE-2023-53330?

A vulnerability has been identified in the Linux kernel, specifically within the cfctrl_linkup_request() function. This flaw could lead to memory leaks when the link type is unknown or if memory allocation (kzalloc) fails. Under these circumstances, the memory allocated for the packet is not released, which could eventually exhaust system resources. A proper release process has been added to ensure that memory is correctly managed even in error scenarios, mitigating the risk associated with this vulnerability.

Affected Version(s)

Linux b482cd2053e3b90a7b33a78c63cdb6badf2ec383

Linux b482cd2053e3b90a7b33a78c63cdb6badf2ec383 < 3acf3783a84cbdf0c9f8cf2f32ee9c49af93a2da

Linux b482cd2053e3b90a7b33a78c63cdb6badf2ec383 < 33df9c5d5e2a18c70f5f5f3c2757d654c1b6ffa3

References

https://git.kernel.org/stable/c/badea57569db04b010e922e29...

https://git.kernel.org/stable/c/3acf3783a84cbdf0c9f8cf2f3...

https://git.kernel.org/stable/c/33df9c5d5e2a18c70f5f5f3c2...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 16, 2025
Vulnerability Reserved
Sep 16, 2025