CVE-2023-53375

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-53375
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53375.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-53375
Downstream
Related
Published
2025-09-18T13:33:21.664Z
Modified
2026-04-02T09:44:05.282895Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
tracing: Free error logs of tracing instances
Details

In the Linux kernel, the following vulnerability has been resolved:

tracing: Free error logs of tracing instances

When a tracing instance is removed, the error messages that hold errors that occurred in the instance needs to be freed. The following reports a memory leak:

# cd /sys/kernel/tracing # mkdir instances/foo # echo 'hist:keys=x' > instances/foo/events/sched/schedswitch/trigger # cat instances/foo/errorlog [ 117.404795] hist:sched:sched_switch: error: Couldn't find field Command: hist:keys=x ^ # rmdir instances/foo

Then check for memory leaks:

# echo scan > /sys/kernel/debug/kmemleak # cat /sys/kernel/debug/kmemleak unreferenced object 0xffff88810d8ec700 (size 192): comm "bash", pid 869, jiffies 4294950577 (age 215.752s) hex dump (first 32 bytes): 60 dd 68 61 81 88 ff ff 60 dd 68 61 81 88 ff ff .ha.....ha.... a0 30 8c 83 ff ff ff ff 26 00 0a 00 00 00 00 00 .0......&....... backtrace: [<00000000dae26536>] kmalloctrace+0x2a/0xa0 [<00000000b2938940>] tracinglogerr+0x277/0x2e0 [<000000004a0e1b07>] parseatom+0x966/0xb40 [<0000000023b24337>] parseexpr+0x5f3/0xdb0 [<00000000594ad074>] eventhisttriggerparse+0x27f8/0x3560 [<00000000293a9645>] triggerprocessregex+0x135/0x1a0 [<000000005c22b4f2>] eventtriggerwrite+0x87/0xf0 [<000000002cadc509>] vfswrite+0x162/0x670 [<0000000059c3b9be>] ksyswrite+0xca/0x170 [<00000000f1cddc00>] dosyscall64+0x3e/0xc0 [<00000000868ac68c>] entrySYSCALL64afterhwframe+0x72/0xdc unreferenced object 0xffff888170c35a00 (size 32): comm "bash", pid 869, jiffies 4294950577 (age 215.752s) hex dump (first 32 bytes): 0a 20 20 43 6f 6d 6d 61 6e 64 3a 20 68 69 73 74 . Command: hist 3a 6b 65 79 73 3d 78 0a 00 00 00 00 00 00 00 00 :keys=x......... backtrace: [<000000006a747de5>] _kmalloc+0x4d/0x160 [<000000000039df5f>] tracinglogerr+0x29b/0x2e0 [<000000004a0e1b07>] parseatom+0x966/0xb40 [<0000000023b24337>] parseexpr+0x5f3/0xdb0 [<00000000594ad074>] eventhisttriggerparse+0x27f8/0x3560 [<00000000293a9645>] triggerprocessregex+0x135/0x1a0 [<000000005c22b4f2>] eventtriggerwrite+0x87/0xf0 [<000000002cadc509>] vfswrite+0x162/0x670 [<0000000059c3b9be>] ksyswrite+0xca/0x170 [<00000000f1cddc00>] dosyscall64+0x3e/0xc0 [<00000000868ac68c>] entrySYSCALL64afterhwframe+0x72/0xdc

The problem is that the error log needs to be freed when the instance is removed.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53375.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
2f754e771b1a6feba670782e82c45555984ac43b
Fixed
987f599fc556a4e64c405d8dde32c70311e8c278
Fixed
6e36373aa5ffa8e00fe7c71b3209f6f17081e552
Fixed
33d5d4e67a0e13c3ca6257fa67bf6503bc000878
Fixed
c0cf0f55be043ef67c38f492aa37ed1986d2f6b6
Fixed
46771c34d6721abfd9e7903eaed2201051eebec6
Fixed
3357c6e429643231e60447b52ffbb7ac895aca22

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53375.json"