CVE-2023-53332

Published: Sep 16, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: genirq/ipi: Fix NULL pointer deref in irq_data_get_affinity_mask() If ipi_send_{mask|single}() is called with an invalid interrupt number, all the local variables there will be NULL. ipi_send_verify() which is invoked from these functions does verify its 'data' parameter, resulting in a kernel oops in irq_data_get_affinity_mask() as the passed NULL pointer gets dereferenced. Add a missing NULL pointer check in ipi_send_verify()... Found by Linux Verification Center (linuxtesting.org) with the SVACE static analysis tool.

Vendor	Product	Versions
Linux	Linux	affected `3b8e29a82dd16c1f2061e0b955a71cd36eeb061b - < 926aef60ea64cd9becf2829f7388f48dbe8bcb11` affected `3b8e29a82dd16c1f2061e0b955a71cd36eeb061b - < 7448c73d64075051f50caed2c62f46553b69ab8a` affected `3b8e29a82dd16c1f2061e0b955a71cd36eeb061b - < feabecaff5902f896531dde90646ca5dfa9d4f7d`
Linux	Linux	affected `4.6` unaffected `0 - < 4.6` unaffected `6.1.18 - <= 6.1.` unaffected `6.2.5 - <= 6.2.` unaffected `6.3 - <= *`

References

https://git.kernel.org/stable/c/926aef60ea64cd9becf2829f7388f48dbe8bcb11

https://git.kernel.org/stable/c/7448c73d64075051f50caed2c62f46553b69ab8a

https://git.kernel.org/stable/c/feabecaff5902f896531dde90646ca5dfa9d4f7d

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-53332

Description

Affected Products

References