Login Sign Up

CVE-2023-53088

7.8 HIGH
Denial of Service

📋 TL;DR

This is a use-after-free vulnerability in the Linux kernel's MPTCP implementation that occurs during listener shutdown. Attackers could potentially exploit this to cause kernel crashes, denial of service, or potentially execute arbitrary code. Systems running affected Linux kernel versions with MPTCP enabled are vulnerable.

💻 Affected Systems

Products:
  • Linux Kernel
Versions: Linux kernel versions before the fix commits (specifically before 0a3f4f1f9c27215e4ddcd312558342e57b93e518 and related commits)
Operating Systems: Linux distributions using affected kernel versions
Default Config Vulnerable: ✅ No
Notes: Only vulnerable if MPTCP (Multipath TCP) is enabled and configured. MPTCP is not enabled by default in most Linux distributions.

📦 What is this software?

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

Linux Kernel by Linux

The Linux Kernel is the core component of the Linux operating system, serving as the critical interface between computer hardware and software processes. As the heart of millions of servers, cloud infrastructure, embedded systems, Android devices, and IoT deployments worldwide, the Linux Kernel mana...

Learn more about Linux Kernel →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Kernel panic leading to system crash, potential privilege escalation to kernel-level code execution, or system instability requiring reboot.

🟠

Likely Case

Kernel crash or denial of service affecting network connectivity and system stability, potentially requiring system reboot.

🟢

If Mitigated

No impact if MPTCP is disabled or system is patched.

🌐 Internet-Facing: MEDIUM - Requires MPTCP to be enabled and accessible, which is not default but could be configured on internet-facing systems.
🏢 Internal Only: MEDIUM - Internal systems with MPTCP enabled could be targeted by authenticated attackers or through lateral movement.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: HIGH

Exploitation requires local access or ability to trigger MPTCP listener shutdown. The vulnerability was discovered through fuzzing and reported with detailed stack traces.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Linux kernel with commits 0a3f4f1f9c27215e4ddcd312558342e57b93e518, 0f4f4cf5d32f10543deb946a37111e714579511e, and 5564be74a22a61855f8b8c100d8c4abb003bb792

Vendor Advisory: https://git.kernel.org/stable/c/0a3f4f1f9c27215e4ddcd312558342e57b93e518

Restart Required: Yes

Instructions:

1. Update Linux kernel to version containing the fix commits. 2. For distributions: Use package manager to update kernel package. 3. Reboot system to load new kernel.

🔧 Temporary Workarounds

Disable MPTCP

linux

Disable Multipath TCP functionality if not required

sysctl -w net.mptcp.enabled=0
echo 'net.mptcp.enabled = 0' >> /etc/sysctl.conf
sysctl -p

🧯 If You Can't Patch

  • Disable MPTCP using sysctl commands
  • Restrict access to systems to prevent unauthorized users from triggering the vulnerability

🔍 How to Verify

Check if Vulnerable:

Check kernel version and if MPTCP is enabled: uname -r && sysctl net.mptcp.enabled

Check Version:

uname -r

Verify Fix Applied:

Verify kernel version is updated and MPTCP is either disabled or patched version is running

📡 Detection & Monitoring

Log Indicators:

  • Kernel panic logs
  • KASAN reports of use-after-free in mptcp functions
  • System crash/reboot events

Network Indicators:

  • Unexpected network service disruptions
  • MPTCP connection failures

SIEM Query:

event_type:kernel_panic OR event_type:system_crash AND (mptcp OR "use-after-free")

📊 Metadata

CVE ID: CVE-2023-53088
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-416
EPSS Score: 0.02% exploit probability (4.5th percentile)
Published: May 2, 2025
Last Updated: November 12, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-53088, you might also want to check these:

CVE-2025-24085 10.0

This CVE describes a use-after-free vulnerability (CWE-416) in Apple operating systems that allows m...

Same vulnerability type (CWE-416)
CVE-2024-43102 10.0

This CVE describes a use-after-free vulnerability in FreeBSD's umtx (user mutex) subsystem where con...

Same vulnerability type (CWE-416)
CVE-2021-33796 10.0

CVE-2021-33796 is a use-after-free vulnerability in MuJS's regexp source property access that can le...

Same vulnerability type (CWE-416)