What is CVE-2023-53995?

CVE-2023-53995 is a unscored severity Linux kernel vulnerability, affecting Linux kernel versions from 2.6.15 onward and patched in 5.4.257, 5.10.195, 5.15.132 and others. CVE-2023-53995 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

What is the CVSS score for CVE-2023-53995?

CVE-2023-53995 has a CVSS score of pending NVD analysis out of 10, rated awaiting scoring severity.

Is there a patch available for CVE-2023-53995?

Yes, CVE-2023-53995 has been patched. Fixed versions include 5.4.257, 5.10.195, 5.15.132 and others. If you are running Linux kernel 2.6.15 or later up to the fix versions, apply the relevant patch for your kernel branch.

Is CVE-2023-53995 actively exploited?

CVE-2023-53995 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.

CVE-2023-53995

In the Linux kernel, the following vulnerability has been resolved: net: ipv4: fix one memleak in __inet_del_ifa() I got the below warning when do fuzzing test: unregister_netdevice: waiting for bond0 to become free. Usage count = 2 It can be repoduced via: ip link add bond0 type bond sysctl -w net.ipv4.conf.bond0.promote_secondaries=1 ip addr add 4.117.174.103/0 scope 0x40 dev bond0 ip addr add 192.168.100.111/255.255.255.254 scope 0 dev bond0 ip addr add 0.0.0.4/0 scope 0x40 secondary dev bond0 ip addr del 4.117.174.103/0 scope 0x40 dev bond0 ip link delete bond0 type bond In this reproduction test case, an incorrect 'last_prim' is found in __inet_del_ifa(), as a result, the secondary address(0.0.0.4/0 scope 0x40) is lost. The memory of the secondary address is leaked and the reference of in_device and net_device is leaked. Fix this problem: Look for 'last_prim' starting at location of the deleted IP and inserting the promoted IP into the location of 'last_prim'.

Package Linux Kernel

Published 2025-12-24

Last modified 2026-04-15

Patch available

Yes

Affected versions

Linux kernel versions 2.6.15 and later are affected. Fixed in 5.4.257, 5.10.195, 5.15.132, 6.1.54, 6.5.4, 6.6 and their respective stable series.

Affected from

≥ 2.6.15

Fixed in

✓ 5.4.257 5.4.x ✓ 5.10.195 5.10.x ✓ 5.15.132 5.15.x ✓ 6.1.54 6.1.x ✓ 6.5.4 6.5.x ✓ 6.6

References

The following references provide additional information about CVE-2023-53995 including vendor advisories, patch commits, exploit details, and third-party analysis. Links are sourced from the NIST NVD database.

Kernel patch commit
https://git.kernel.org/stable/c/2f1e86014d0cc084886c36a2d77bc620e2d42618
Patch
Kernel patch commit
https://git.kernel.org/stable/c/42652af5360d30b43b06057c193739e7dfb18f42
Patch
Kernel patch commit
https://git.kernel.org/stable/c/5624f26a3574500ce23929cb2c9976a0dec9920a
Patch

6 patch commits total View all on NVD

Frequently asked questions

What is CVE-2023-53995?

CVE-2023-53995 is a unscored severity Linux kernel vulnerability . It affects Linux kernel versions from 2.6.15 onward and has been patched in 5.4.257, 5.10.195, 5.15.132 and others. CVE-2023-53995 has not been confirmed as actively exploited and is not listed in the CISA KEV catalog.
Is there a patch available for CVE-2023-53995?

Yes — CVE-2023-53995 has been patched. Fixed versions include 5.4.257, 5.10.195, 5.15.132 and others. If you are running Linux kernel 2.6.15 or later up to the fix versions, apply the relevant patch for your kernel branch.
Is CVE-2023-53995 actively exploited?

No — CVE-2023-53995 has not been confirmed as actively exploited. It is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog.