CVE-2023-54171Missing Release of Resource after Effective Lifetime in Linux

CWE-772Missing Release of Resource after Effective Lifetime7 documents6 sources
Severity
3.3LOW
No vector
EPSS
0.0%
top 92.57%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 30

Description

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix memory leak of iter->temp when reading trace_pipe kmemleak reports: unreferenced object 0xffff88814d14e200 (size 256): comm "cat", pid 336, jiffies 4294871818 (age 779.490s) hex dump (first 32 bytes): 04 00 01 03 00 00 00 00 08 00 00 00 00 00 00 00 ................ 0c d8 c8 9b ff ff ff ff 04 5a ca 9b ff ff ff ff .........Z...... backtrace: [] __kmalloc+0x4f/0x140 [] trace_find_next_entry+0xbb/0x1d0 [] trace_print_

Affected Packages4 packages

Linuxlinux/linux_kernel5.7.05.10.188+3
Debianlinux/linux_kernel< 5.10.191-1+3
CVEListV5linux/linuxff895103a84abc85a5f43ecabc7f67cf36e1348f1a1e793e021d75cd0accd8f329ec9456e5cd105e+5
debiandebian/linux< linux 6.1.52-1 (bookworm)

🔴Vulnerability Details

3
OSV
tracing: Fix memory leak of iter->temp when reading trace_pipe2025-12-30
GHSA
GHSA-rgpm-wqmc-fmj4: In the Linux kernel, the following vulnerability has been resolved: tracing: Fix memory leak of iter->temp when reading trace_pipe kmemleak reports:2025-12-30
OSV
CVE-2023-54171: In the Linux kernel, the following vulnerability has been resolved: tracing: Fix memory leak of iter->temp when reading trace_pipe kmemleak reports: u2025-12-30

📋Vendor Advisories

2
Red Hat
kernel: tracing: Fix memory leak of iter->temp when reading trace_pipe2025-12-30
Debian
CVE-2023-54171: linux - In the Linux kernel, the following vulnerability has been resolved: tracing: Fi...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-54171 Impact, Exploitability, and Mitigation Steps | Wiz