DEBIAN-CVE-2023-53484
- Source
- https://security-tracker.debian.org/tracker/CVE-2023-53484
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2023-53484.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2023-53484
- Upstream
- Published
- 2025-10-01T12:15:51.180Z
- Modified
- 2026-04-28T20:27:02.083918Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved: lib: cpurmap: Avoid use after free on rmap->obj array entries When calling irqsetaffinitynotifier() with NULL at the notify argument, it will cause freeing of the glue pointer in the corresponding array entry but will leave the pointer in the array. A subsequent call to freeirqcpurmap() will try to free this entry again leading to possible use after free. Fix that by setting NULL to the array entry and checking that we have non-zero at the array entry when iterating over the array in freeirqcpurmap(). The current code does not suffer from this since there are no cases where irqsetaffinitynotifier(irq, NULL) (note the NULL passed for the notify arg) is called, followed by a call to freeirqcpurmap() so we don't hit and issue. Subsequent patches in this series excersize this flow, hence the required fix.
- References
Affected packages
Debian:11 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed5.10.191-1
Affected versions
5.*
Debian:12 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Debian:13 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source
Debian:14 / linux
Package
- Name
- linux
- Purl
- pkg:deb/debian/linux?arch=source