CVE-2023-53852Missing Reference to Active Allocated Resource in Linux

CWE-771Missing Reference to Active Allocated Resource7 documents6 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 90.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 9

Description

In the Linux kernel, the following vulnerability has been resolved: nvme-core: fix memory leak in dhchap_secret_store Free dhchap_secret in nvme_ctrl_dhchap_secret_store() before we return fix following kmemleack:- unreferenced object 0xffff8886376ea800 (size 64): comm "check", pid 22048, jiffies 4344316705 (age 92.199s) hex dump (first 32 bytes): 44 48 48 43 2d 31 3a 30 30 3a 6e 78 72 35 4b 67 DHHC-1:00:nxr5Kg 75 58 34 75 6f 41 78 73 4a 61 34 63 2f 68 75 4c uX4uoAxsJa4c/huL backtrace: [] __k

Affected Packages4 packages

Linuxlinux/linux_kernel6.0.06.1.39+2
Debianlinux/linux_kernel< 6.1.52-1+2
CVEListV5linux/linuxf50fff73d620cd6e8f48bc58d4f1c944615a3fea2e9b141307554521d60fecf6bf1d2edc8dd0181d+4
debiandebian/linux< linux 6.1.52-1 (bookworm)

🔴Vulnerability Details

3
OSV
nvme-core: fix memory leak in dhchap_secret_store2025-12-09
GHSA
GHSA-6p7c-22m4-r5fq: In the Linux kernel, the following vulnerability has been resolved: nvme-core: fix memory leak in dhchap_secret_store Free dhchap_secret in nvme_ctr2025-12-09
OSV
CVE-2023-53852: In the Linux kernel, the following vulnerability has been resolved: nvme-core: fix memory leak in dhchap_secret_store Free dhchap_secret in nvme_ctrl_2025-12-09

📋Vendor Advisories

2
Red Hat
kernel: nvme-core: fix memory leak in dhchap_secret_store2025-12-09
Debian
CVE-2023-53852: linux - In the Linux kernel, the following vulnerability has been resolved: nvme-core: ...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-53852 Impact, Exploitability, and Mitigation Steps | Wiz