Null Pointer Dereference in Linux Kernel RAID10 Functionality
CVE-2023-53380

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2025

What is CVE-2023-53380?

A vulnerability within the Linux kernel affects the RAID10 implementation, specifically involving the handling of the 'mreplace' variable. An improper management of the 'need_replace' and 'mreplace' checks may lead to a null pointer dereference, which could be exploited under certain conditions. The flaw arises when the status of 'mreplace' changes between checks without a corresponding update to 'need_replace'. This issue has been addressed by consolidating the checks for 'mreplace', ensuring improved stability and security within the RAID10 synchronization requests.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux ee37d7314a32ab6809eacc3389bad0406c69a81f < 45fa023b3334a7ae6f6c4eb977295804222dfa28

Linux ee37d7314a32ab6809eacc3389bad0406c69a81f < 2990e2ece18dd4cca71b3109c80517ad94adb065

Linux ee37d7314a32ab6809eacc3389bad0406c69a81f

References

https://git.kernel.org/stable/c/45fa023b3334a7ae6f6c4eb97...

https://git.kernel.org/stable/c/2990e2ece18dd4cca71b3109c...

https://git.kernel.org/stable/c/f4368a462b1f9a8ecc2fdb09a...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 18, 2025
Vulnerability Reserved
Sep 17, 2025

JSON

Linux

What is CVE-2023-53380?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.