CVE-2023-53219

HIGH EPSS 4.5%
Published Sep 15, 20259mo ago · Modified Jun 17, 20261w ago
7.8 CVSS 3.1
High
Find Similar
Published Sep 15, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: media: netup_unidvb: fix use-after-free at del_timer() When Universal DVB card is detaching, netup_unidvb_dma_fini() uses del_timer() to stop dma->timeout timer. But when timer handler netup_unidvb_dma_timeout() is running, del_timer() could not stop it. As a result, the use-after-free bug could happen. The process is shown below: (cleanup routine) | (timer routine) | mod_timer(&dev->tx_sim_timer, ..) netup_unidvb_finidev() | (wait a time) netup_unidvb_dma_fini() | netup_unidvb_dma_timeout() del_timer(&dma->timeout); | | ndev->pci_dev->dev //USE Fix by changing del_timer() to del_timer_sync().

CVSS Details

Base Score
7.8
Exploitability
1.8
Impact
5.9
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
4.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-416 Use After Free Memory Safety

Affected Products 9

VendorProductVersionRange
linuxlinux_kernel*≥4.3  –  <4.14.316
linuxlinux_kernel*≥4.15  –  <4.19.284
linuxlinux_kernel*≥4.20  –  <5.4.244
linuxlinux_kernel*≥5.5  –  <5.10.181
linuxlinux_kernel*≥5.11  –  <5.15.113
linuxlinux_kernel*≥5.16  –  <6.1.30
linuxlinux_kernel*≥6.2  –  <6.3.4
linuxlinux_kernel6.4any
linuxlinux_kernel6.4any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/051af3f0b7d1cd8ab7f3e2523ad8ae1af44caba3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/07821524f67bf920342bc84ae8b3dea2a315a89e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0f5bb36bf9b39a2a96e730bf4455095b50713f63
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1550bcf2983ae1220cc8ab899a39a423fa7cb523
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/90229e9ee957d4514425e4a4d82c50ab5d57ac4d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c8f9c05e1ebcc9c7bc211cc8b74d8fb86a8756fc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dd5c77814f290b353917df329f36de1472d47154
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f9982db735a8495eee14267cf193c806b957e942
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/051af3f0b7d1cd8ab7f3e2523ad8ae1af44caba3
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/07821524f67bf920342bc84ae8b3dea2a315a89e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/0f5bb36bf9b39a2a96e730bf4455095b50713f63
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/1550bcf2983ae1220cc8ab899a39a423fa7cb523
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/90229e9ee957d4514425e4a4d82c50ab5d57ac4d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c8f9c05e1ebcc9c7bc211cc8b74d8fb86a8756fc
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dd5c77814f290b353917df329f36de1472d47154
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f9982db735a8495eee14267cf193c806b957e942
    Patch