CVE-2023-53304
MEDIUM EPSS 4.2%
Published Sep 16, 20259mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Published Sep 16, 2025 9mo ago
Last Modified Jun 17, 2026 2w ago
Description
In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_rbtree: fix overlap expiration walk The lazy gc on insert that should remove timed-out entries fails to release the other half of the interval, if any. Can be reproduced with tests/shell/testcases/sets/0044interval_overlap_0 in nftables.git and kmemleak enabled kernel. Second bug is the use of rbe_prev vs. prev pointer. If rbe_prev() returns NULL after at least one iteration, rbe_prev points to element that is not an end interval, hence it should not be removed. Lastly, check the genmask of the end interval if this is active in the current generation.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
4.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-476 NULL Pointer Dereference Memory Safety
Affected Products 11
| Vendor | Product | Version | Range |
|---|---|---|---|
| linux | linux_kernel | * | ≥5.10.166 – <5.10.190 |
| linux | linux_kernel | * | ≥5.15.91 – <5.15.124 |
| linux | linux_kernel | * | ≥6.1.9 – <6.1.43 |
| linux | linux_kernel | * | ≥6.2.1 – <6.4.8 |
| linux | linux_kernel | 6.2 | any |
| linux | linux_kernel | 6.2 | any |
| linux | linux_kernel | 6.2 | any |
| linux | linux_kernel | 6.2 | any |
| linux | linux_kernel | 6.5 | any |
| linux | linux_kernel | 6.5 | any |
| linux | linux_kernel | 6.5 | any |
References 7
- git.kernel.org https://git.kernel.org/stable/c/50cbb9d195c197af671869c8cadce3bd483735a0
- git.kernel.org https://git.kernel.org/stable/c/8284a79136c384059e85e278da2210b809730287
- git.kernel.org https://git.kernel.org/stable/c/893cb3c3513cf661a0ff45fe0cfa83fe27131f76
- git.kernel.org https://git.kernel.org/stable/c/89a4d1a89751a0fbd520e64091873e19cc0979e8
- git.kernel.org https://git.kernel.org/stable/c/acaee227cf79c45a5d2d49c3e9a66333a462802c
- git.kernel.org https://git.kernel.org/stable/c/cd66733932399475fe933cb3ec03e687ed401462
- git.kernel.org https://git.kernel.org/stable/c/f718863aca469a109895cb855e6b81fff4827d71
Remediation
- git.kernel.org https://git.kernel.org/stable/c/50cbb9d195c197af671869c8cadce3bd483735a0
- git.kernel.org https://git.kernel.org/stable/c/8284a79136c384059e85e278da2210b809730287
- git.kernel.org https://git.kernel.org/stable/c/893cb3c3513cf661a0ff45fe0cfa83fe27131f76
- git.kernel.org https://git.kernel.org/stable/c/89a4d1a89751a0fbd520e64091873e19cc0979e8
- git.kernel.org https://git.kernel.org/stable/c/acaee227cf79c45a5d2d49c3e9a66333a462802c
- git.kernel.org https://git.kernel.org/stable/c/cd66733932399475fe933cb3ec03e687ed401462
- git.kernel.org https://git.kernel.org/stable/c/f718863aca469a109895cb855e6b81fff4827d71