CVE-2023-53633

MEDIUM

Linux Kernel - Use-After-Free in accel/qaic map_user_pages

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Fix a leak in map_user_pages() If get_user_pages_fast() allocates some pages but not as many as we wanted, then the current code leaks those pages. Call put_page() on the pages before returning.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/cdcba752a3d48fbe6f05cf2c91ab9497c8daad0c

Patch

https://git.kernel.org/stable/c/73274c33d961f4aa0f968f763e2c9f4210b4f4a3

Scores

CVSS v3 5.5

EPSS 0.0016

EPSS Percentile 5.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (8)

Linux/Linux < 6.4

Linux/Linux 129776ac2e38231fa9c02ce20e116c99de291666 - 73274c33d961f4aa0f968f763e2c9f4210b4f4a3

Linux/Linux 129776ac2e38231fa9c02ce20e116c99de291666 - cdcba752a3d48fbe6f05cf2c91ab9497c8daad0c

Linux/Linux 6.4

Linux/Linux 6.4.7 - 6.4.*

Linux/Linux 6.5

linux/linux_kernel 6.5 rc1 (2 CPE variants)

linux/linux_kernel 6.4 - 6.4.7

Published Oct 07, 2025

Tracked Since Feb 18, 2026