Use-After-Free Vulnerability in Linux Kernel CIFS Module
CVE-2023-53427

7.8HIGH

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2025

What is CVE-2023-53427?

A vulnerability in the Linux kernel's CIFS module can lead to a use-after-free scenario during the management of memory recovery lists. Specifically, if the allocation of memory for recovery fails, the subsequent operations do not properly initialize or clear the recovery work list. This oversight can trigger warnings and unexpected behaviors, including memory access issues that may compromise system integrity. The flaw primarily surfaces when mounting CIFS shares, underscoring the need for timely updates to maintain system stability.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux c7398583340a6d82b8bb7f7f21edcde27dc6a898 < 275a3d2b9408fc4895e342f772cab9a89960546e

Linux c7398583340a6d82b8bb7f7f21edcde27dc6a898 < 3524d6da0fe88aee79f06be6572955d16ad76b39

Linux c7398583340a6d82b8bb7f7f21edcde27dc6a898

References

https://git.kernel.org/stable/c/275a3d2b9408fc4895e342f77...

https://git.kernel.org/stable/c/3524d6da0fe88aee79f06be65...

https://git.kernel.org/stable/c/cfd85a0922c4696d768965e68...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 18, 2025
Vulnerability Reserved
Sep 17, 2025

JSON

Linux

What is CVE-2023-53427?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.