CVE-2023-54273

Summary

In the Linux kernel, the following vulnerability has been resolved:

xfrm: Fix leak of dev tracker

At the stage of direction checks, the netdev reference tracker is already initialized, but released with wrong *_put() call.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux919e43fad5163a8ceb39826ecdee897a9f799351 < 7d16c515059b3746f2d6a24a74c3ba786a68c2a1affected
LinuxLinux919e43fad5163a8ceb39826ecdee897a9f799351 < ec8f32ad9a65a8cbb465b69e154aaec9d2fe45c4affected
LinuxLinux6.2affected
LinuxLinux0 < 6.2unaffected
LinuxLinux6.3.4 <= 6.3.*unaffected
LinuxLinux6.4 <= *unaffected

Weaknesses

References