Linux Kernel Vulnerability in blk-cgroup Impacting Memory Management
CVE-2023-53421

5.5MEDIUM

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2025

What is CVE-2023-53421?

A vulnerability in the Linux kernel pertaining to the blk-cgroup module affects proper initialization of fields within the blk_iostat_set structure. When the blkg_alloc() function is executed to allocate a blkcg_gq structure, crucial fields, blkg and sync, are not adequately initialized after clearing during the blkcg_reset_stats() process. This oversight may lead to a kernel panic due to a NULL pointer access of the blkg pointer, severely impacting system stability. Additionally, while the sync field's missing initialization poses fewer risks, it can still cause issues in debug kernel environments by lacking lockdep initialization. The vulnerability has been addressed by ensuring these fields are re-initialized following memory clearing.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux f73316482977ac401ac37245c9df48079d4e11f3 < 0561aa6033dd181594116d705c41fc16e97161a2

Linux f73316482977ac401ac37245c9df48079d4e11f3 < 892faa76be894d324bf48b12a55c7af7be2bad83

Linux f73316482977ac401ac37245c9df48079d4e11f3

References

https://git.kernel.org/stable/c/0561aa6033dd181594116d705...
https://git.kernel.org/stable/c/892faa76be894d324bf48b12a...
https://git.kernel.org/stable/c/b0d26283af612b9e0cc3188b0...

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.