Use-After-Free Vulnerability in Linux Kernel Affects Networking Operations
CVE-2023-53338

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 17 September 2025

What is CVE-2023-53338?

A vulnerability in the Linux kernel's networking subsystem allows for a use-after-free condition due to improper handling of return values from BPF encapsulation operations. Produced return values like NET_RX_DROP and NETDEV_TX_BUSY, when mismanaged at the xmit hook, can lead to kernel crashes by referencing freed socket buffers. The fix introduces a method to properly manage these return values, preventing them from being interpreted incorrectly and ensuring stable kernel performance.

Affected Version(s)

Linux 3a0af8fd61f90920f6fa04e4f1e9a6a73c1b4fd2 < 67f8f2bae8e7ac72e09def2b667e44704c4d1ee1

Linux 3a0af8fd61f90920f6fa04e4f1e9a6a73c1b4fd2

References

https://git.kernel.org/stable/c/67f8f2bae8e7ac72e09def2b6...

https://git.kernel.org/stable/c/a97f221651fcdc891166e9bc2...

https://git.kernel.org/stable/c/e3f647e4b642f9f6d32795a16...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 17, 2025
Vulnerability Reserved
Sep 16, 2025