CVE-2023-54133 — Resource Leak in Linux

7 documents6 sources

Severity

—N/A

No vector

EPSS

0.0%

top 92.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedDec 24

Description

In the Linux kernel, the following vulnerability has been resolved: nfp: clean mc addresses in application firmware when closing port When moving devices from one namespace to another, mc addresses are cleaned in software while not removed from application firmware. Thus the mc addresses are remained and will cause resource leak. Now use `__dev_mc_unsync` to clean mc addresses when closing port.

Affected Packages4 packages

▶Linuxlinux/linux_kernel6.2.0 — 6.4.5

▶Debianlinux/linux_kernel< 6.4.11-1+1

▶CVEListV5linux/linuxe20aa071cd955aabc15be0ec1e914283592ddef4 — c427221733d49fd1e1b79b4a86746acf3ef660e7+2

▶debiandebian/linux< linux 6.4.11-1 (forky)

🔴Vulnerability Details

OSV

CVE-2023-54133: In the Linux kernel, the following vulnerability has been resolved: nfp: clean mc addresses in application firmware when closing port When moving devi↗2025-12-24

▶

GHSA

GHSA-rhjm-7jhc-x7ww: In the Linux kernel, the following vulnerability has been resolved: nfp: clean mc addresses in application firmware when closing port When moving de↗2025-12-24

▶

OSV

nfp: clean mc addresses in application firmware when closing port↗2025-12-24

▶

📋Vendor Advisories

Red Hat

kernel: nfp: clean mc addresses in application firmware when closing port↗2025-12-24

▶

Debian

CVE-2023-54133: linux - In the Linux kernel, the following vulnerability has been resolved: nfp: clean ...↗2023

▶

🕵️Threat Intelligence

Wiz

CVE-2023-54133 Impact, Exploitability, and Mitigation Steps | Wiz↗

▶