SB2025091993 - NULL pointer dereference in Linux kernel rcu

Description

This security bulletin contains information about 1 security vulnerability.

1) NULL pointer dereference (CVE-ID: CVE-2023-53419)

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to NULL pointer dereference within the kernel/rcu/tree_exp.h. A local user can perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

• https://git.kernel.org/stable/c/2bc0ae94ef1f9ed322d8ee439de3239ea3632ab2
• https://git.kernel.org/stable/c/3c1566bca3f8349f12b75d0a2d5e4a20ad6262ec
• https://git.kernel.org/stable/c/a7d21b8585894e6fff973f6ddae42f02b13f600f
• https://git.kernel.org/stable/c/d0a8c0e31a09ec1efd53079083e2a677956b4d91
• https://git.kernel.org/stable/c/e30a55e98ae6c44253d8b129efefd5da5bc6e3bc
• https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.113