CVE-2023-53614
MEDIUM EPSS 0.9%
Published Oct 4, 20258mo ago · Modified Jun 17, 20261w ago
4.7 CVSS 3.1
Published Oct 4, 2025 8mo ago
Last Modified Jun 17, 2026 1w ago
Description
In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix race with VMA iteration and mm_struct teardown exit_mmap() will tear down the VMAs and maple tree with the mmap_lock held in write mode. Ensure that the maple tree is still valid by checking ksm_test_exit() after taking the mmap_lock in read mode, but before the for_each_vma() iterator dereferences a destroyed maple tree. Since the maple tree is destroyed, the flags telling lockdep to check an external lock has been cleared. Skip the for_each_vma() iterator to avoid dereferencing a maple tree without the external lock flag, which would create a lockdep warning.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity High
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
0.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-362
Affected Products 5
References 3
- git.kernel.org https://git.kernel.org/stable/c/286b0cab31bac29960e5684f6fb331d42f03b363
- git.kernel.org https://git.kernel.org/stable/c/6db504ce55bdbc575723938fc480713c9183f6a2
- git.kernel.org https://git.kernel.org/stable/c/b4f664ffd8f78c05a1fd542a28bc5a11e994c014
Remediation
- git.kernel.org https://git.kernel.org/stable/c/286b0cab31bac29960e5684f6fb331d42f03b363
- git.kernel.org https://git.kernel.org/stable/c/6db504ce55bdbc575723938fc480713c9183f6a2
- git.kernel.org https://git.kernel.org/stable/c/b4f664ffd8f78c05a1fd542a28bc5a11e994c014