Memory Leak Vulnerability in Linux Kernel Affecting Various Distributions
CVE-2023-53402

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2025

What is CVE-2023-53402?

A memory leak vulnerability exists in the Linux Kernel, specifically within the 'debugfs_lookup()' function. When this function is used to look up directories in the debug filesystem, it is crucial for developers to ensure that the result is properly released using 'dput()'. Failure to do so results in accumulated memory leaks over time, potentially causing resource exhaustion in systems. To enhance code stability and prevent memory issues, developers are encouraged to utilize 'debugfs_lookup_and_remove()', a function that automatically handles memory management, thus simplifying the implementation process.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 2e07fa2e30d48d24a791483774a3d4b76769e0cf

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 13969236b6900b5a3625ad2193569588e978f1cc

References

https://git.kernel.org/stable/c/2e07fa2e30d48d24a79148377...

https://git.kernel.org/stable/c/c578a68ffcdc2e8c72556bebd...

https://git.kernel.org/stable/c/13969236b6900b5a3625ad219...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 18, 2025
Vulnerability Reserved
Sep 17, 2025