Bug 2424986 (CVE-2023-54033) - CVE-2023-54033 kernel: bpf: fix a memory leak in the LRU and LRU_PERCPU hash maps
Summary: CVE-2023-54033 kernel: bpf: fix a memory leak in the LRU and LRU_PERCPU hash ...
Keywords:
Status: NEW
Alias: CVE-2023-54033
Product: Security Response
Classification: Other
Component: vulnerability
Version: unspecified
Hardware: All
OS: Linux
low
low
Target Milestone: ---
Assignee: Product Security DevOps Team
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2025-12-24 12:06 UTC by OSIDB Bzimport
Modified: 2025-12-25 10:55 UTC (History)
0 users

Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments (Terms of Use)

Description OSIDB Bzimport 2025-12-24 12:06:06 UTC 
In the Linux kernel, the following vulnerability has been resolved:

bpf: fix a memory leak in the LRU and LRU_PERCPU hash maps

The LRU and LRU_PERCPU maps allocate a new element on update before locking the
target hash table bucket. Right after that the maps try to lock the bucket.
If this fails, then maps return -EBUSY to the caller without releasing the
allocated element. This makes the element untracked: it doesn't belong to
either of free lists, and it doesn't belong to the hash table, so can't be
re-used; this eventually leads to the permanent -ENOMEM on LRU map updates,
which is unexpected. Fix this by returning the element to the local free list
if bucket locking fails.
Comment 1 Alexander B 2025-12-25 10:51:11 UTC 
Upstream advisory:
https://lore.kernel.org/linux-cve-announce/2025122437-CVE-2023-54033-ad11@gregkh/T
Note You need to log in before you can comment on or make changes to this bug.