Memory Leak Vulnerability in Linux Kernel's Vector Configuration
CVE-2023-53745

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 December 2025

What is CVE-2023-53745?

A memory leak vulnerability exists in the Linux kernel's vector configuration method. Specifically, if the return value of the uml_parse_vector_ifspec function is NULL, the function fails to release allocated memory through kfree(params). This oversight can lead to increased memory consumption over time, potentially impacting system performance and reliability. It is crucial for users and administrators to apply necessary updates to mitigate this risk and ensure optimal system operations.

Affected Version(s)

Linux 49da7e64f33e80edffb1a9eeb230fa4c3f42dffb < 5c49fb5ad01104acc584405572abf6616d45148e

Linux 49da7e64f33e80edffb1a9eeb230fa4c3f42dffb < 6480c3a12755bf85d6738ab60967e89b809c701a

Linux 49da7e64f33e80edffb1a9eeb230fa4c3f42dffb

References

https://git.kernel.org/stable/c/5c49fb5ad01104acc58440557...

https://git.kernel.org/stable/c/6480c3a12755bf85d6738ab60...

https://git.kernel.org/stable/c/f2b9c4544e3bd60f353732291...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2025
Vulnerability Reserved
Dec 8, 2025

JSON