CVE-2023-54055Missing Release of Resource after Effective Lifetime in Linux

CWE-772Missing Release of Resource after Effective Lifetime7 documents6 sources
Severity
5.5MEDIUM
No vector
EPSS
0.0%
top 92.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix memory leak of PBLE objects On rmmod of irdma, the PBLE object memory is not being freed. PBLE object memory are not statically pre-allocated at function initialization time unlike other HMC objects. PBLEs objects and the Segment Descriptors (SD) for it can be dynamically allocated during scale up and SD's remain allocated till function deinitialization. Fix this leak by adding IRDMA_HMC_IW_PBLE to the iw_hmc_

Affected Packages4 packages

Linuxlinux/linux_kernel5.14.05.15.108+2
Debianlinux/linux_kernel< 6.1.25-1+2
CVEListV5linux/linux44d9e52977a1b90b0db1c7f8b197c218e9226520810250c9c6616fe131099c0e51c61f2110ed07bf+4
debiandebian/linux< linux 6.1.25-1 (bookworm)

🔴Vulnerability Details

3
OSV
RDMA/irdma: Fix memory leak of PBLE objects2025-12-24
GHSA
GHSA-8x32-fq94-j5fv: In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix memory leak of PBLE objects On rmmod of irdma, the PBLE object m2025-12-24
OSV
CVE-2023-54055: In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix memory leak of PBLE objects On rmmod of irdma, the PBLE object mem2025-12-24

📋Vendor Advisories

2
Red Hat
kernel: Linux kernel: Memory leak in RDMA/irdma subsystem leads to Denial of Service2025-12-24
Debian
CVE-2023-54055: linux - In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma:...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-54055 Impact, Exploitability, and Mitigation Steps | Wiz