Vulnerability in Linux Kernel's XFRM Algorithms and Encapsulation Handling
CVE-2023-53684

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 7 October 2025

What is CVE-2023-53684?

A vulnerability in the Linux kernel affects the xfrm subsystem, specifically in how xfrm algorithms and encapsulation templates dump data to user-space. This issue arises from improper handling of padding in structures, which may result in the exposure of random, potentially sensitive data. The recent patch addresses this concern by ensuring that padding bytes are zeroed out before being copied to user-space, thereby enhancing the integrity and confidentiality of the data transmitted.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 0725daaa9a879388ed312110f62dbd5ea2d75f8f

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 5218af4ad5d8948faac19f71583bcd786c3852df

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 1a351e26cc010d6991fbbd5701ac16581372e26f

References

https://git.kernel.org/stable/c/0725daaa9a879388ed312110f...

https://git.kernel.org/stable/c/5218af4ad5d8948faac19f715...

https://git.kernel.org/stable/c/1a351e26cc010d6991fbbd570...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 7, 2025
Vulnerability Reserved
Oct 7, 2025

JSON