CVE-2023-53704Missing Release of Resource after Effective Lifetime in Linux

CWE-772Missing Release of Resource after Effective Lifetime6 documents5 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 88.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedOct 22

Description

In the Linux kernel, the following vulnerability has been resolved: clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe() Replace of_iomap() and kzalloc() with devm_of_iomap() and devm_kzalloc() which can automatically release the related memory when the device or driver is removed or unloaded to avoid potential memory leak. In this case, iounmap(anatop_base) in line 427,433 are removed as manual release is not required. Besides, referring to clk-imx8mq.c, check the return co

Affected Packages4 packages

Linuxlinux/linux_kernel5.6.05.10.188+4
Debianlinux/linux_kernel< 5.10.191-1+3
CVEListV5linux/linux9c140d9926761b0f5d329ff6c09a1540f3d5e1d3cb047c13bbf9018693ae31f03a5a26b212d02f13+6
debiandebian/linux< linux 6.1.52-1 (bookworm)

🔴Vulnerability Details

3
OSV
CVE-2023-53704: In the Linux kernel, the following vulnerability has been resolved: clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe() Replace of_i2025-10-22
GHSA
GHSA-mqpx-xr9g-rvhm: In the Linux kernel, the following vulnerability has been resolved: clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe() Replace of2025-10-22
OSV
clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe()2025-10-22

📋Vendor Advisories

2
Red Hat
kernel: clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe()2025-10-22
Debian
CVE-2023-53704: linux - In the Linux kernel, the following vulnerability has been resolved: clk: imx: c...2023