CVE-2023-53793 (GCVE-0-2023-53793)
Vulnerability from cvelistv5 – Published: 2025-12-09 00:00 – Updated: 2025-12-09 00:00
VLAI?
Summary
In the Linux kernel, the following vulnerability has been resolved:
perf tool x86: Fix perf_env memory leak
Found by leak sanitizer:
```
==1632594==ERROR: LeakSanitizer: detected memory leaks
Direct leak of 21 byte(s) in 1 object(s) allocated from:
#0 0x7f2953a7077b in __interceptor_strdup ../../../../src/libsanitizer/asan/asan_interceptors.cpp:439
#1 0x556701d6fbbf in perf_env__read_cpuid util/env.c:369
#2 0x556701d70589 in perf_env__cpuid util/env.c:465
#3 0x55670204bba2 in x86__is_amd_cpu arch/x86/util/env.c:14
#4 0x5567020487a2 in arch__post_evsel_config arch/x86/util/evsel.c:83
#5 0x556701d8f78b in evsel__config util/evsel.c:1366
#6 0x556701ef5872 in evlist__config util/record.c:108
#7 0x556701cd6bcd in test__PERF_RECORD tests/perf-record.c:112
#8 0x556701cacd07 in run_test tests/builtin-test.c:236
#9 0x556701cacfac in test_and_print tests/builtin-test.c:265
#10 0x556701cadddb in __cmd_test tests/builtin-test.c:402
#11 0x556701caf2aa in cmd_test tests/builtin-test.c:559
#12 0x556701d3b557 in run_builtin tools/perf/perf.c:323
#13 0x556701d3bac8 in handle_internal_command tools/perf/perf.c:377
#14 0x556701d3be90 in run_argv tools/perf/perf.c:421
#15 0x556701d3c3f8 in main tools/perf/perf.c:537
#16 0x7f2952a46189 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58
SUMMARY: AddressSanitizer: 21 byte(s) leaked in 1 allocation(s).
```
Severity ?
No CVSS data available.
Assigner
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Linux | Linux |
Affected:
f7b58cbdb3ff36eba8622e67eee66c10dd1c9995 , < 75d65c1cc439606ada882755fd205d13c2c7907d
(git)
Affected: f7b58cbdb3ff36eba8622e67eee66c10dd1c9995 , < 010139bfc6bb9ddab81dbc2cf71cd3a9c28adc7f (git) Affected: f7b58cbdb3ff36eba8622e67eee66c10dd1c9995 , < f3daf02a41e3c11e1a473517a8a6169248fb8e7b (git) Affected: f7b58cbdb3ff36eba8622e67eee66c10dd1c9995 , < 99d4850062a84564f36923764bb93935ef2ed108 (git) |
||
{
"containers": {
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"tools/perf/arch/x86/util/env.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "75d65c1cc439606ada882755fd205d13c2c7907d",
"status": "affected",
"version": "f7b58cbdb3ff36eba8622e67eee66c10dd1c9995",
"versionType": "git"
},
{
"lessThan": "010139bfc6bb9ddab81dbc2cf71cd3a9c28adc7f",
"status": "affected",
"version": "f7b58cbdb3ff36eba8622e67eee66c10dd1c9995",
"versionType": "git"
},
{
"lessThan": "f3daf02a41e3c11e1a473517a8a6169248fb8e7b",
"status": "affected",
"version": "f7b58cbdb3ff36eba8622e67eee66c10dd1c9995",
"versionType": "git"
},
{
"lessThan": "99d4850062a84564f36923764bb93935ef2ed108",
"status": "affected",
"version": "f7b58cbdb3ff36eba8622e67eee66c10dd1c9995",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"tools/perf/arch/x86/util/env.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "6.1"
},
{
"lessThan": "6.1",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"version": "6.1.39",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.3.*",
"status": "unaffected",
"version": "6.3.13",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.4.*",
"status": "unaffected",
"version": "6.4.4",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "6.5",
"versionType": "original_commit_for_fix"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.1.39",
"versionStartIncluding": "6.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.3.13",
"versionStartIncluding": "6.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.4.4",
"versionStartIncluding": "6.1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.5",
"versionStartIncluding": "6.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nperf tool x86: Fix perf_env memory leak\n\nFound by leak sanitizer:\n```\n==1632594==ERROR: LeakSanitizer: detected memory leaks\n\nDirect leak of 21 byte(s) in 1 object(s) allocated from:\n #0 0x7f2953a7077b in __interceptor_strdup ../../../../src/libsanitizer/asan/asan_interceptors.cpp:439\n #1 0x556701d6fbbf in perf_env__read_cpuid util/env.c:369\n #2 0x556701d70589 in perf_env__cpuid util/env.c:465\n #3 0x55670204bba2 in x86__is_amd_cpu arch/x86/util/env.c:14\n #4 0x5567020487a2 in arch__post_evsel_config arch/x86/util/evsel.c:83\n #5 0x556701d8f78b in evsel__config util/evsel.c:1366\n #6 0x556701ef5872 in evlist__config util/record.c:108\n #7 0x556701cd6bcd in test__PERF_RECORD tests/perf-record.c:112\n #8 0x556701cacd07 in run_test tests/builtin-test.c:236\n #9 0x556701cacfac in test_and_print tests/builtin-test.c:265\n #10 0x556701cadddb in __cmd_test tests/builtin-test.c:402\n #11 0x556701caf2aa in cmd_test tests/builtin-test.c:559\n #12 0x556701d3b557 in run_builtin tools/perf/perf.c:323\n #13 0x556701d3bac8 in handle_internal_command tools/perf/perf.c:377\n #14 0x556701d3be90 in run_argv tools/perf/perf.c:421\n #15 0x556701d3c3f8 in main tools/perf/perf.c:537\n #16 0x7f2952a46189 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58\n\nSUMMARY: AddressSanitizer: 21 byte(s) leaked in 1 allocation(s).\n```"
}
],
"providerMetadata": {
"dateUpdated": "2025-12-09T00:00:50.132Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/75d65c1cc439606ada882755fd205d13c2c7907d"
},
{
"url": "https://git.kernel.org/stable/c/010139bfc6bb9ddab81dbc2cf71cd3a9c28adc7f"
},
{
"url": "https://git.kernel.org/stable/c/f3daf02a41e3c11e1a473517a8a6169248fb8e7b"
},
{
"url": "https://git.kernel.org/stable/c/99d4850062a84564f36923764bb93935ef2ed108"
}
],
"title": "perf tool x86: Fix perf_env memory leak",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2023-53793",
"datePublished": "2025-12-09T00:00:50.132Z",
"dateReserved": "2025-12-08T23:58:35.274Z",
"dateUpdated": "2025-12-09T00:00:50.132Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2023-53793\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-12-09T01:16:50.827\",\"lastModified\":\"2025-12-09T18:37:13.640\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nperf tool x86: Fix perf_env memory leak\\n\\nFound by leak sanitizer:\\n```\\n==1632594==ERROR: LeakSanitizer: detected memory leaks\\n\\nDirect leak of 21 byte(s) in 1 object(s) allocated from:\\n #0 0x7f2953a7077b in __interceptor_strdup ../../../../src/libsanitizer/asan/asan_interceptors.cpp:439\\n #1 0x556701d6fbbf in perf_env__read_cpuid util/env.c:369\\n #2 0x556701d70589 in perf_env__cpuid util/env.c:465\\n #3 0x55670204bba2 in x86__is_amd_cpu arch/x86/util/env.c:14\\n #4 0x5567020487a2 in arch__post_evsel_config arch/x86/util/evsel.c:83\\n #5 0x556701d8f78b in evsel__config util/evsel.c:1366\\n #6 0x556701ef5872 in evlist__config util/record.c:108\\n #7 0x556701cd6bcd in test__PERF_RECORD tests/perf-record.c:112\\n #8 0x556701cacd07 in run_test tests/builtin-test.c:236\\n #9 0x556701cacfac in test_and_print tests/builtin-test.c:265\\n #10 0x556701cadddb in __cmd_test tests/builtin-test.c:402\\n #11 0x556701caf2aa in cmd_test tests/builtin-test.c:559\\n #12 0x556701d3b557 in run_builtin tools/perf/perf.c:323\\n #13 0x556701d3bac8 in handle_internal_command tools/perf/perf.c:377\\n #14 0x556701d3be90 in run_argv tools/perf/perf.c:421\\n #15 0x556701d3c3f8 in main tools/perf/perf.c:537\\n #16 0x7f2952a46189 in __libc_start_call_main ../sysdeps/nptl/libc_start_call_main.h:58\\n\\nSUMMARY: AddressSanitizer: 21 byte(s) leaked in 1 allocation(s).\\n```\"}],\"metrics\":{},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/010139bfc6bb9ddab81dbc2cf71cd3a9c28adc7f\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/75d65c1cc439606ada882755fd205d13c2c7907d\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/99d4850062a84564f36923764bb93935ef2ed108\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/f3daf02a41e3c11e1a473517a8a6169248fb8e7b\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}]}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…