CVE-2023-53375: 
Linux Kernel vulnerability analysis and mitigation

CVE-2023-53375 is a memory leak vulnerability discovered in the Linux kernel's tracing subsystem. The issue was identified and disclosed on September 18, 2025, affecting the error logging functionality of tracing instances. When a tracing instance is removed, the error messages that hold errors occurring in the instance are not properly freed, leading to memory leaks (NVD Database).

The vulnerability occurs in the tracing subsystem of the Linux kernel when handling error logs for tracing instances. When creating a tracing instance and triggering an error condition (such as using an invalid histogram configuration), the system allocates memory to store error messages. However, these allocations are not properly freed when the tracing instance is removed, resulting in memory leaks of varying sizes (192 bytes and 32 bytes have been documented in test cases). The issue can be reproduced by creating a tracing instance, generating an error, and then removing the instance (NVD Database).

The primary impact of this vulnerability is resource exhaustion through memory leaks. When exploited, the system gradually loses available memory as tracing instances are created and removed, potentially leading to degraded system performance over time. While the immediate impact per instance is relatively small (documented leaks of 192 and 32 bytes), repeated exploitation could accumulate to cause significant memory consumption (NVD Database).