Memory Leak Vulnerability in Linux Kernel's TUN Device Functionality
CVE-2023-53685
What is CVE-2023-53685?
A vulnerability in the Linux kernel related to the TUN device has been identified, causing memory leaks associated with socket buffers (skb) and socket structures (sk). This occurs when the TUN device is detached while still handling network packets, potentially leading to resource exhaustion. When NAPI and multi-queue features are enabled on a TUN device, there is a race condition that allows for the insertion of skb into the write queue even after the queue has been detached. Proper handling ensures that these actions are synchronized to avoid memory leaks and maintain system stability.
Affected Version(s)
Linux cde8b15f1aabe327038ee4e0e11dd6b798572f69 < 9cae243b9ae25adfe468cd47ceca591f6725b79c
Linux cde8b15f1aabe327038ee4e0e11dd6b798572f69 < 0d20210a190f76db9ec35ee4e0fc77e6c7a148f5
Linux cde8b15f1aabe327038ee4e0e11dd6b798572f69 < 82b2bc279467c875ec36f8ef820f00997c2a4e8e