CVE-2023-53563Improper Update of Reference Count in Linux

CWE-911Improper Update of Reference Count5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 96.90%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedOct 4

Description

In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver After loading the amd-pstate-ut driver, amd_pstate_ut_check_perf() and amd_pstate_ut_check_freq() use cpufreq_cpu_get() to get the policy of the CPU and mark it as busy. In these functions, cpufreq_cpu_put() should be used to release the policy, but it is not, so any other entity trying to access the policy is blocked indefinitely. One such scenario is when amd

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

NVDlinux/linux_kernel6.16.1.53+2
Debianlinux/linux_kernel< 6.1.55-1+2
CVEListV5linux/linux14eb1c96e3a3fd9cd377ac9af3c7a410f8bf1015fcf78a17bbb94bebaa912f0460a1848f7d374c94+4
debiandebian/linux< linux 6.1.55-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
OSV
CVE-2023-53563: In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver After loading the2025-10-04
GHSA
GHSA-jjx2-jhcm-j26c: In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver After loading t2025-10-04

📋Vendor Advisories

2
Red Hat
kernel: cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver2025-10-04
Debian
CVE-2023-53563: linux - In the Linux kernel, the following vulnerability has been resolved: cpufreq: am...2023