2405728 – (CVE-2023-53716) CVE-2023-53716 kernel: Linux kernel: Network subsystem memory leak

Bug 2405728 (CVE-2023-53716) - CVE-2023-53716 kernel: Linux kernel: Network subsystem memory leak

Summary: CVE-2023-53716 kernel: Linux kernel: Network subsystem memory leak

Keywords:
Status:	NEW
Alias:	CVE-2023-53716
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-10-22 14:02 UTC by OSIDB Bzimport
Modified:	2025-11-12 18:52 UTC (History)
CC List:	0 users
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-10-22 14:02:40 UTC

In the Linux kernel, the following vulnerability has been resolved:

net: fix skb leak in __skb_tstamp_tx()

Commit 50749f2dd685 ("tcp/udp: Fix memleaks of sk and zerocopy skbs with
TX timestamp.") added a call to skb_orphan_frags_rx() to fix leaks with
zerocopy skbs. But it ended up adding a leak of its own. When
skb_orphan_frags_rx() fails, the function just returns, leaking the skb
it just cloned. Free it before returning.

This bug was discovered and resolved using Coverity Static Analysis
Security Testing (SAST) by Synopsys, Inc.

Comment 1 Jon Moroney 2025-10-22 17:55:52 UTC

Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025102214-CVE-2023-53716-4265@gregkh/T

Note You need to log in before you can comment on or make changes to this bug.