CVE-2023-53219
Published: Sep 15, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: media: netup_unidvb: fix use-after-free at del_timer() When Universal DVB card is detaching, netup_unidvb_dma_fini() uses del_timer() to stop dma->timeout timer. But when timer handler netup_unidvb_dma_timeout() is running, del_timer() could not stop it. As a result, the use-after-free bug could happen. The process is shown below: (cleanup routine) | (timer routine) | mod_timer(&dev->tx_sim_timer, ..) netup_unidvb_finidev() | (wait a time) netup_unidvb_dma_fini() | netup_unidvb_dma_timeout() del_timer(&dma->timeout); | | ndev->pci_dev->dev //USE Fix by changing del_timer() to del_timer_sync().
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 52b1eaf4c59a3bbd07afbb4ab4f43418a807d02e - < dd5c77814f290b353917df329f36de1472d47154affected 52b1eaf4c59a3bbd07afbb4ab4f43418a807d02e - < 90229e9ee957d4514425e4a4d82c50ab5d57ac4daffected 52b1eaf4c59a3bbd07afbb4ab4f43418a807d02e - < 1550bcf2983ae1220cc8ab899a39a423fa7cb523affected 52b1eaf4c59a3bbd07afbb4ab4f43418a807d02e - < f9982db735a8495eee14267cf193c806b957e942affected 52b1eaf4c59a3bbd07afbb4ab4f43418a807d02e - < 051af3f0b7d1cd8ab7f3e2523ad8ae1af44caba3+3 more versions |
Linux | Linux | affected 4.3unaffected 0 - < 4.3unaffected 4.14.316 - <= 4.14.*unaffected 4.19.284 - <= 4.19.*unaffected 5.4.244 - <= 5.4.*+5 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now