CVE-2023-53268Missing Release of Resource after Effective Lifetime in Linux

CWE-772Missing Release of Resource after Effective Lifetime5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 95.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedSep 16

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: fsl_mqs: move of_node_put() to the correct location of_node_put() should have been done directly after mqs_priv->regmap = syscon_node_to_regmap(gpr_np); otherwise it creates a reference leak on the success path. To fix this, of_node_put() is moved to the correct location, and change all the gotos to direct returns.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

NVDlinux/linux_kernel5.55.10.180+4
Debianlinux/linux_kernel< 5.10.191-1+3
CVEListV5linux/linuxa9d273671440c439c4f236123c59dd839c1a0eb7b5a6930fc6a432e32714c4ed3c597077d999cf6d+6
debiandebian/linux< linux 6.1.37-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
GHSA
GHSA-f43x-vh5p-44h5: In the Linux kernel, the following vulnerability has been resolved: ASoC: fsl_mqs: move of_node_put() to the correct location of_node_put() should h2025-09-16
OSV
CVE-2023-53268: In the Linux kernel, the following vulnerability has been resolved: ASoC: fsl_mqs: move of_node_put() to the correct location of_node_put() should hav2025-09-16

📋Vendor Advisories

2
Red Hat
kernel: ASoC: fsl_mqs: move of_node_put() to the correct location2025-09-16
Debian
CVE-2023-53268: linux - In the Linux kernel, the following vulnerability has been resolved: ASoC: fsl_m...2023
CVE-2023-53268 — Linux vulnerability | cvebase