Security Flaw in Linux Kernel Affects Message Integrity and Encryption
CVE-2023-53769

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 December 2025

What is CVE-2023-53769?

An issue in the Linux kernel allows for vulnerabilities related to double-buffer messages in the virt/coco/sev-guest module. The fault occurs when encryption algorithms directly read from and write to shared unencrypted memory. This mishandling may lead to information leakage and enables the host to compromise message integrity. To mitigate this threat, it is recommended to copy messages in and out fully before any computations to ensure the integrity and confidentiality of the data is preserved.

Affected Version(s)

Linux d5af44dde5461d125d1602ac913ab5c6bdf09b8b < 577a64725bfd77645986168e953d405067ee565b

Linux d5af44dde5461d125d1602ac913ab5c6bdf09b8b

Linux d5af44dde5461d125d1602ac913ab5c6bdf09b8b < 4b69c63f716cfda38e1210e65b68f67f6cee2ddf

References

https://git.kernel.org/stable/c/577a64725bfd77645986168e9...

https://git.kernel.org/stable/c/c27dafc4aa50a29ec927b3aa8...

https://git.kernel.org/stable/c/4b69c63f716cfda38e1210e65...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2025
Vulnerability Reserved
Dec 8, 2025

JSON