CVE-2023-53842Missing Release of Resource after Effective Lifetime in Linux

CWE-772Missing Release of Resource after Effective Lifetime7 documents6 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 90.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 9

Description

In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove The MBHC resources must be released on component probe failure and removal so can not be tied to the lifetime of the component device. This is specifically needed to allow probe deferrals of the sound card which otherwise fails when reprobing the codec component: snd-sc8280xp sound: ASoC: failed to instantiate card -517 genirq: Flags mismatch irq 299. 00002001

Affected Packages4 packages

Linuxlinux/linux_kernel5.14.05.15.123+2
Debianlinux/linux_kernel< 6.1.52-1+2
CVEListV5linux/linux0e5c9e7ff899808afa4e2b08c2e6ccc469bed68190ab6446eb522e31421b77bf8f45714f5668f9a3+4
debiandebian/linux< linux 6.1.52-1 (bookworm)

🔴Vulnerability Details

3
OSV
ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove2025-12-09
GHSA
GHSA-65w4-2cj7-2f5c: In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove The MBHC resou2025-12-09
OSV
CVE-2023-53842: In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove The MBHC resourc2025-12-09

📋Vendor Advisories

2
Red Hat
kernel: ASoC: codecs: wcd-mbhc-v2: fix resource leaks on component remove2025-12-09
Debian
CVE-2023-53842: linux - In the Linux kernel, the following vulnerability has been resolved: ASoC: codec...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-53842 Impact, Exploitability, and Mitigation Steps | Wiz