Linux Kernel Bobtail in Ice Driver Causing Resource Management Issue
CVE-2023-53657

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 7 October 2025

What is CVE-2023-53657?

A vulnerability exists in the Linux kernel ice driver related to the management of switchdev resources. The issue arises when the function ice_eswitch_port_start_xmit is invoked prematurely, before the necessary resources are fully allocated. This can lead to a NULL pointer dereference, potentially resulting in system instability or crashes. The vulnerability has been patched by ensuring that a check is implemented to verify that switchdev configuration is complete before attempting to transmit data.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 5760a72b3060150b587eff3e879648c7470efddd

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 63ff5a94649837d980e3b9ef535c793ec8cb0ca7

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 7aa529a69e92b9aff585e569d5003f7c15d8d60b

References

https://git.kernel.org/stable/c/5760a72b3060150b587eff3e8...

https://git.kernel.org/stable/c/63ff5a94649837d980e3b9ef5...

https://git.kernel.org/stable/c/7aa529a69e92b9aff585e569d...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 7, 2025
Vulnerability Reserved
Oct 7, 2025

JSON