{"id":"CVE-2023-53480","summary":"kobject: Add sanity check for kset-\u003ekobj.ktype in kset_register()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nkobject: Add sanity check for kset-\u003ekobj.ktype in kset_register()\n\nWhen I register a kset in the following way:\n\tstatic struct kset my_kset;\n\tkobject_set_name(&my_kset.kobj, \"my_kset\");\n        ret = kset_register(&my_kset);\n\nA null pointer dereference exception is occurred:\n[ 4453.568337] Unable to handle kernel NULL pointer dereference at \\\nvirtual address 0000000000000028\n... ...\n[ 4453.810361] Call trace:\n[ 4453.813062]  kobject_get_ownership+0xc/0x34\n[ 4453.817493]  kobject_add_internal+0x98/0x274\n[ 4453.822005]  kset_register+0x5c/0xb4\n[ 4453.825820]  my_kobj_init+0x44/0x1000 [my_kset]\n... ...\n\nBecause I didn't initialize my_kset.kobj.ktype.\n\nAccording to the description in Documentation/core-api/kobject.rst:\n - A ktype is the type of object that embeds a kobject.  Every structure\n   that embeds a kobject needs a corresponding ktype.\n\nSo add sanity check to make sure kset-\u003ekobj.ktype is not NULL.","modified":"2026-04-02T09:44:16.797817Z","published":"2025-10-01T11:42:48.919Z","related":["SUSE-SU-2025:03600-1","SUSE-SU-2025:03615-1","SUSE-SU-2025:03634-1","SUSE-SU-2025:20851-1","SUSE-SU-2025:20861-1","SUSE-SU-2025:20870-1","SUSE-SU-2025:20898-1","SUSE-SU-2025:3751-1","SUSE-SU-2025:3761-1","SUSE-SU-2025:4057-1","SUSE-SU-2025:4132-1","SUSE-SU-2025:4141-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53480.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/039ec9db2d30032eafa365f5f89b30eca5322b05"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1a772881bc059c596d8ca587cbd2a233edce3d3b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/48aebbe801e78a8932404c122ed0e880ccedc220"},{"type":"WEB","url":"https://git.kernel.org/stable/c/4d0fe8c52bb3029d83e323c961221156ab98680b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5df5829158513134ddcaf2184d9286eda7b0bb18"},{"type":"WEB","url":"https://git.kernel.org/stable/c/964e025ceefdf75da46b0133d0c2790de451aeec"},{"type":"WEB","url":"https://git.kernel.org/stable/c/f3f6bf22a4f5ba649cf26ae4670de5c7f861bdef"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53480.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-53480"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"5f81880d5204ee2388fd9a75bb850ccd526885b7"},{"fixed":"039ec9db2d30032eafa365f5f89b30eca5322b05"},{"fixed":"964e025ceefdf75da46b0133d0c2790de451aeec"},{"fixed":"5df5829158513134ddcaf2184d9286eda7b0bb18"},{"fixed":"f3f6bf22a4f5ba649cf26ae4670de5c7f861bdef"},{"fixed":"48aebbe801e78a8932404c122ed0e880ccedc220"},{"fixed":"1a772881bc059c596d8ca587cbd2a233edce3d3b"},{"fixed":"4d0fe8c52bb3029d83e323c961221156ab98680b"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53480.json"}}],"schema_version":"1.7.5"}