Memory Leak Vulnerability in Linux Kernel Affecting Debugfs Component
CVE-2023-53408

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2025

What is CVE-2023-53408?

A memory leak vulnerability exists in the Linux kernel's debugfs component related to the blktrace functionality. When using debugfs_lookup(), the absence of dput() results in uncollected memory over time, leading to increasing memory usage and potential system performance degradation. It is recommended to utilize debugfs_lookup_and_remove() to ensure proper memory management and mitigate this issue effectively.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 3036f5f5ae5210797d95446795df01c1249af9ad

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 5286b72fb425291af5f4ca7285d73c16a08d8691

References

https://git.kernel.org/stable/c/a2e4b48d6f9b39aa19bafe223...

https://git.kernel.org/stable/c/3036f5f5ae5210797d9544679...

https://git.kernel.org/stable/c/5286b72fb425291af5f4ca728...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 18, 2025
Vulnerability Reserved
Sep 17, 2025