CVE-2023-53745 — Missing Release of Memory after Effective Lifetime in Linux

6 documents5 sources

Severity

—N/A

No vector

EPSS

0.0%

top 85.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 8

Description

In the Linux kernel, the following vulnerability has been resolved: um: vector: Fix memory leak in vector_config If the return value of the uml_parse_vector_ifspec function is NULL, we should call kfree(params) to prevent memory leak.

Affected Packages4 packages

▶Linuxlinux/linux_kernel4.17.0 — 4.19.276+5

▶Debianlinux/linux_kernel< 5.10.178-1+3

▶CVEListV5linux/linux49da7e64f33e80edffb1a9eeb230fa4c3f42dffb — 5c49fb5ad01104acc584405572abf6616d45148e+7

▶debiandebian/linux< linux 6.1.20-1 (bookworm)

🔴Vulnerability Details

OSV

um: vector: Fix memory leak in vector_config↗2025-12-08

▶

OSV

CVE-2023-53745: In the Linux kernel, the following vulnerability has been resolved: um: vector: Fix memory leak in vector_config If the return value of the uml_parse_↗2025-12-08

▶

GHSA

GHSA-49m9-4vrg-7r7p: In the Linux kernel, the following vulnerability has been resolved: um: vector: Fix memory leak in vector_config If the return value of the uml_pars↗2025-12-08

▶

📋Vendor Advisories

Red Hat

kernel: um: vector: Fix memory leak in vector_config↗2025-12-08

▶

Debian

CVE-2023-53745: linux - In the Linux kernel, the following vulnerability has been resolved: um: vector:...↗2023

▶