CVE-2023-53116
HIGH EPSS 6.3%
Published May 2, 20251y ago · Modified Jun 17, 20262w ago
7.8 CVSS 3.1
Published May 2, 2025 1y ago
Last Modified Jun 17, 2026 2w ago
Description
In the Linux kernel, the following vulnerability has been resolved: nvmet: avoid potential UAF in nvmet_req_complete() An nvme target ->queue_response() operation implementation may free the request passed as argument. Such implementation potentially could result in a use after free of the request pointer when percpu_ref_put() is called in nvmet_req_complete(). Avoid such problem by using a local variable to save the sq pointer before calling __nvmet_req_complete(), thus avoiding dereferencing the req pointer after that function call.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
EPSS Exploit Probability
6.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-416 Use After Free Memory Safety
Affected Products 9
| Vendor | Product | Version | Range |
|---|---|---|---|
| linux | linux_kernel | * | ≥4.8 – <4.14.311 |
| linux | linux_kernel | * | ≥4.15 – <4.19.279 |
| linux | linux_kernel | * | ≥4.20 – <5.4.238 |
| linux | linux_kernel | * | ≥5.5 – <5.10.176 |
| linux | linux_kernel | * | ≥5.11 – <5.15.104 |
| linux | linux_kernel | * | ≥5.16 – <6.1.21 |
| linux | linux_kernel | * | ≥6.2 – <6.2.8 |
| linux | linux_kernel | 6.3 | any |
| linux | linux_kernel | 6.3 | any |
References 8
- git.kernel.org https://git.kernel.org/stable/c/04c394208831d5e0d5cfee46722eb0f033cd4083
- git.kernel.org https://git.kernel.org/stable/c/6173a77b7e9d3e202bdb9897b23f2a8afe7bf286
- git.kernel.org https://git.kernel.org/stable/c/8ed9813871038b25a934b21ab76b5b7dbf44fc3a
- git.kernel.org https://git.kernel.org/stable/c/a6317235da8aa7cb97529ebc8121cc2a4c4c437a
- git.kernel.org https://git.kernel.org/stable/c/bcd535f07c58342302a2cd2bdd8894fe0872c8a9
- git.kernel.org https://git.kernel.org/stable/c/e5d99b29012bbf0e86929403209723b2806500c1
- git.kernel.org https://git.kernel.org/stable/c/f1d5888a5efe345b63c430b256e95acb0a475642
- git.kernel.org https://git.kernel.org/stable/c/fafcb4b26393870c45462f9af6a48e581dbbcf7e
Remediation
- git.kernel.org https://git.kernel.org/stable/c/04c394208831d5e0d5cfee46722eb0f033cd4083
- git.kernel.org https://git.kernel.org/stable/c/6173a77b7e9d3e202bdb9897b23f2a8afe7bf286
- git.kernel.org https://git.kernel.org/stable/c/8ed9813871038b25a934b21ab76b5b7dbf44fc3a
- git.kernel.org https://git.kernel.org/stable/c/a6317235da8aa7cb97529ebc8121cc2a4c4c437a
- git.kernel.org https://git.kernel.org/stable/c/bcd535f07c58342302a2cd2bdd8894fe0872c8a9
- git.kernel.org https://git.kernel.org/stable/c/e5d99b29012bbf0e86929403209723b2806500c1
- git.kernel.org https://git.kernel.org/stable/c/f1d5888a5efe345b63c430b256e95acb0a475642
- git.kernel.org https://git.kernel.org/stable/c/fafcb4b26393870c45462f9af6a48e581dbbcf7e