CVE-2023-53501

MEDIUM EPSS 3.5%
Published Oct 1, 20259mo ago · Modified Jun 17, 20261w ago
4.7 CVSS 3.1
Medium
Find Similar
Published Oct 1, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: iommu/amd/iommu_v2: Fix pasid_state refcount dec hit 0 warning on pasid unbind When unbinding pasid - a race condition exists vs outstanding page faults. To prevent this, the pasid_state object contains a refcount. * set to 1 on pasid bind * incremented on each ppr notification start * decremented on each ppr notification done * decremented on pasid unbind Since refcount_dec assumes that refcount will never reach 0: the current implementation causes the following to be invoked on pasid unbind: REFCOUNT_WARN("decrement hit 0; leaking memory") Fix this issue by changing refcount_dec to refcount_dec_and_test to explicitly handle refcount=1.

CVSS Details

Base Score
4.7
Exploitability
1.0
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity High
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
3.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 4

VendorProductVersionRange
linuxlinux_kernel*≥5.15  –  <5.15.132
linuxlinux_kernel*≥5.16  –  <6.1.53
linuxlinux_kernel*≥6.2  –  <6.4.16
linuxlinux_kernel*≥6.5  –  <6.5.3

References 5

  • git.kernel.org https://git.kernel.org/stable/c/13ed255248dfbbb7f23f9170c7a537fb9ca22c73
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/534103bcd52ca9c1fecbc70e717b4a538dc4ded8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/98d86bf32187db27946ca817c2467a5f2f7aa02f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9ccc51be3126b25cfe9351dbffde946c925cc28a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a50d60b8f2aff46dd7c7edb4a5835cdc4d432c22
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/13ed255248dfbbb7f23f9170c7a537fb9ca22c73
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/534103bcd52ca9c1fecbc70e717b4a538dc4ded8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/98d86bf32187db27946ca817c2467a5f2f7aa02f
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9ccc51be3126b25cfe9351dbffde946c925cc28a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/a50d60b8f2aff46dd7c7edb4a5835cdc4d432c22
    Patch