CVE-2023-53604 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: dm integrity: call kmem_cache_destroy() in dm_integrity_init() error path Otherwise the journal_io_cache will leak if dm_register_target() fails.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

References

Link	Providers
https://git.kernel.org/stable/c/3877b5c1509b16eeb1f275228fd91789cd88cf17
https://git.kernel.org/stable/c/44f29e93a55b544dc961b6f8b4e93abaeaafb9ee
https://git.kernel.org/stable/c/6b79a428c02769f2a11f8ae76bf866226d134887
https://git.kernel.org/stable/c/6d126899b0747305c9d39a0bcf87e0df9c3f555b
https://git.kernel.org/stable/c/a5d8c6bf58e5b2e70fbc15f3b08dfc1ba6f269ac
https://git.kernel.org/stable/c/c8c9c50268729bf35f6c9bb1205f490db920454e
https://git.kernel.org/stable/c/ca8b634fdf07dee3f6dfde57079c4511480b525e
https://git.kernel.org/stable/c/e09a592fdd6c716506774bdbebb5f6c537b47767
https://git.kernel.org/stable/c/ff4d6b5b38429a7731e5593680d2138bf74dd546
https://lore.kernel.org/linux-cve-announce/2025100431-CVE-2023-53604-31fe@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-53604
https://www.cve.org/CVERecord?id=CVE-2023-53604

History

Mon, 06 Oct 2025 22:45:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025100431-CVE-2023-53604-31fe@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2023-53604 https://www.cve.org/CVERecord?id=CVE-2023-53604
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Low`

Mon, 06 Oct 2025 14:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Linux Linux linux Kernel
Vendors & Products		Linux Linux linux Kernel

Sat, 04 Oct 2025 16:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: dm integrity: call kmem_cache_destroy() in dm_integrity_init() error path Otherwise the journal_io_cache will leak if dm_register_target() fails.
Title		dm integrity: call kmem_cache_destroy() in dm_integrity_init() error path
References		https://git.kernel.org/stable/c/3877b5c1509b16eeb1f275228fd91789cd88cf17 https://git.kernel.org/stable/c/44f29e93a55b544dc961b6f8b4e93abaeaafb9ee https://git.kernel.org/stable/c/6b79a428c02769f2a11f8ae76bf866226d134887 https://git.kernel.org/stable/c/6d126899b0747305c9d39a0bcf87e0df9c3f555b https://git.kernel.org/stable/c/a5d8c6bf58e5b2e70fbc15f3b08dfc1ba6f269ac https://git.kernel.org/stable/c/c8c9c50268729bf35f6c9bb1205f490db920454e https://git.kernel.org/stable/c/ca8b634fdf07dee3f6dfde57079c4511480b525e https://git.kernel.org/stable/c/e09a592fdd6c716506774bdbebb5f6c537b47767 https://git.kernel.org/stable/c/ff4d6b5b38429a7731e5593680d2138bf74dd546

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-10-04T15:44:14.568Z

Updated: 2025-10-29T10:50:36.153Z

Reserved: 2025-10-04T15:40:38.479Z

Link: CVE-2023-53604

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-10-04T16:15:57.057

Modified: 2025-10-06T14:56:21.733

Link: CVE-2023-53604

Redhat

Severity : Low

Publid Date: 2025-10-04T00:00:00Z

Links: CVE-2023-53604 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object