Race Condition Vulnerability in Linux Kernel by Mellanox Technologies
CVE-2023-53581

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 4 October 2025

What is CVE-2023-53581?

A race condition vulnerability in the Linux kernel allows a double-removal of flows from the unready_flows list, potentially causing system crashes. This issue arises because the NOT_READY flag is checked prior to acquiring the necessary lock, leaving the system vulnerable during concurrent operations. The solution involves repositioning the flag check within a protected mutex section to prevent unauthorized access, thus enhancing system stability. Users are advised to update their systems to mitigate potential risks associated with this vulnerability.

Affected Version(s)

Linux ad86755b18d5edf1956f6d25c844f27289216877 < 30c281a77fb1b2d362030ea243dd663201d62a21

Linux ad86755b18d5edf1956f6d25c844f27289216877 < 82ac62d76a000871004f534ad294e763e966d3b0

Linux ad86755b18d5edf1956f6d25c844f27289216877

References

https://git.kernel.org/stable/c/30c281a77fb1b2d362030ea24...

https://git.kernel.org/stable/c/82ac62d76a000871004f534ad...

https://git.kernel.org/stable/c/e962fd5933ebc767ce2a1cf7b...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 4, 2025
Vulnerability Reserved
Oct 4, 2025

JSON