CVE-2023-54085 — NULL Pointer Dereference in Linux

CWE-476 — NULL Pointer Dereference7 documents6 sources

Severity

5.5MEDIUM

No vector

EPSS

0.0%

top 92.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix NULL pointer dereference on fastopen early fallback In case of early fallback to TCP, subflow_syn_recv_sock() deletes the subflow context before returning the newly allocated sock to the caller. The fastopen path does not cope with the above unconditionally dereferencing the subflow context.

Affected Packages3 packages

▶Linuxlinux/linux_kernel6.2.0 — 6.2.12

▶CVEListV5linux/linux36b122baf6a8bd46b4a591f12f4ed17b22257408 — 95135835519b0ab931c39908b2c99e9fb3c9068b+2

▶debiandebian/linux

🔴Vulnerability Details

OSV

mptcp: fix NULL pointer dereference on fastopen early fallback↗2025-12-24

▶

GHSA

GHSA-459f-v5p8-p6w3: In the Linux kernel, the following vulnerability has been resolved: mptcp: fix NULL pointer dereference on fastopen early fallback In case of early↗2025-12-24

▶

OSV

CVE-2023-54085: In the Linux kernel, the following vulnerability has been resolved: mptcp: fix NULL pointer dereference on fastopen early fallback In case of early fa↗2025-12-24

▶

📋Vendor Advisories

Red Hat

kernel: Linux kernel: Denial of Service due to NULL pointer dereference in mptcp fastopen↗2025-12-24

▶

Debian

CVE-2023-54085: linux - In the Linux kernel, the following vulnerability has been resolved: mptcp: fix ...↗2023

▶

🕵️Threat Intelligence

Wiz

CVE-2023-54085 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶