Description

In the Linux kernel, the following vulnerability has been resolved: bpf: fix a memory leak in the LRU and LRU_PERCPU hash maps The LRU and LRU_PERCPU maps allocate a new element on update before locking the target hash table bucket. Right after that the maps try to lock the bucket. If this fails, then maps return -EBUSY to the caller without releasing the allocated element. This makes the element untracked: it doesn't belong to either of free lists, and it doesn't belong to the hash table, so can't be re-used; this eventually leads to the permanent -ENOMEM on LRU map updates, which is unexpected. Fix this by returning the element to the local free list if bucket locking fails.

INFO

Published Date :

2025-12-24T10:56:00.579Z

Last Modified :

2025-12-24T10:56:00.579Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-54033 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-54033.

URL Resource
https://git.kernel.org/stable/c/1a9e80f757bbb1562d82e350afce2bb2f712cc3d cve-icon cve-icon
https://git.kernel.org/stable/c/79ea1a12fb9a8275b6e19d4ca625dd872dedcbb9 cve-icon cve-icon
https://git.kernel.org/stable/c/965e9cccbe6b9c7b379908cebcb5e3a47f20dd5e cve-icon cve-icon
https://git.kernel.org/stable/c/b34ffb0c6d23583830f9327864b9c1f486003305 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025122437-CVE-2023-54033-ad11@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-54033 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-54033 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact