CVE-2023-53189

MEDIUM EPSS 4.3%
Published Sep 15, 20259mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Sep 15, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ipv6/addrconf: fix a potential refcount underflow for idev Now in addrconf_mod_rs_timer(), reference idev depends on whether rs_timer is not pending. Then modify rs_timer timeout. There is a time gap in [1], during which if the pending rs_timer becomes not pending. It will miss to hold idev, but the rs_timer is activated. Thus rs_timer callback function addrconf_rs_timer() will be executed and put idev later without holding idev. A refcount underflow issue for idev can be caused by this. if (!timer_pending(&idev->rs_timer)) in6_dev_hold(idev); <--------------[1] mod_timer(&idev->rs_timer, jiffies + when); To fix the issue, hold idev if mod_timer() return 0.

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-191

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥3.10.105  –  <4.14.322
linuxlinux_kernel*≥4.15  –  <4.19.291
linuxlinux_kernel*≥4.20  –  <5.4.251
linuxlinux_kernel*≥5.5  –  <5.10.188
linuxlinux_kernel*≥5.11  –  <5.15.121
linuxlinux_kernel*≥5.16  –  <6.1.40
linuxlinux_kernel*≥6.2  –  <6.4.5
linuxlinux_kernel6.5any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/06a0716949c22e2aefb648526580671197151acc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1f656e483eb4733d62f18dfb206a49b78f60f495
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2ad31ce40e8182860b631e37209e93e543790b7c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/436b7cc7eae7851c184b671ed7a4a64c750b86f7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/82abd1c37d3bf2a2658b34772c17a25a6f9cca42
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c6395e32935d35e6f935e7caf1c2dac5a95943b4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c7eeba47058532f6077d6a658e38b6698f6ae71a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/df62fdcd004afa72ecbed0e862ebb983acd3aa57
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/06a0716949c22e2aefb648526580671197151acc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1f656e483eb4733d62f18dfb206a49b78f60f495
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2ad31ce40e8182860b631e37209e93e543790b7c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/436b7cc7eae7851c184b671ed7a4a64c750b86f7
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/82abd1c37d3bf2a2658b34772c17a25a6f9cca42
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c6395e32935d35e6f935e7caf1c2dac5a95943b4
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c7eeba47058532f6077d6a658e38b6698f6ae71a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/df62fdcd004afa72ecbed0e862ebb983acd3aa57
    Patch