Memory Leak Vulnerability in Linux Kernel Affecting Various Distributions
CVE-2023-53402

5.5MEDIUM

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2025

What is CVE-2023-53402?

A memory leak vulnerability exists in the Linux Kernel, specifically within the 'debugfs_lookup()' function. When this function is used to look up directories in the debug filesystem, it is crucial for developers to ensure that the result is properly released using 'dput()'. Failure to do so results in accumulated memory leaks over time, potentially causing resource exhaustion in systems. To enhance code stability and prevent memory issues, developers are encouraged to utilize 'debugfs_lookup_and_remove()', a function that automatically handles memory management, thus simplifying the implementation process.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 337015573718b161891a3473d25f59273f2e626b < 2e07fa2e30d48d24a791483774a3d4b76769e0cf

Linux 337015573718b161891a3473d25f59273f2e626b

Linux 337015573718b161891a3473d25f59273f2e626b < 13969236b6900b5a3625ad2193569588e978f1cc

References

https://git.kernel.org/stable/c/2e07fa2e30d48d24a79148377...
https://git.kernel.org/stable/c/c578a68ffcdc2e8c72556bebd...
https://git.kernel.org/stable/c/13969236b6900b5a3625ad219...

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.