CVE-2023-54188Linux vulnerability

7 documents6 sources
Severity
5.3MEDIUM
No vector
EPSS
0.0%
top 93.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedDec 30

Description

In the Linux kernel, the following vulnerability has been resolved: dmaengine: apple-admac: Fix 'current_tx' not getting freed In terminate_all we should queue up all submitted descriptors to be freed. We do that for the content of the 'issued' and 'submitted' lists, but the 'current_tx' descriptor falls through the cracks as it's removed from the 'issued' list once it gets assigned to be the current descriptor. Explicitly queue up freeing of the 'current_tx' descriptor to address a memory lea

Affected Packages4 packages

Linuxlinux/linux_kernel6.0.06.1.25+1
Debianlinux/linux_kernel< 6.1.25-1+2
CVEListV5linux/linuxb127315d9a78c011c011b88b92f650510edcfbd2b7abd535881a48587961c2099b1d2933ebd42c4b+3
debiandebian/linux< linux 6.1.25-1 (bookworm)

🔴Vulnerability Details

3
GHSA
GHSA-vvr9-4v54-jx9g: In the Linux kernel, the following vulnerability has been resolved: dmaengine: apple-admac: Fix 'current_tx' not getting freed In terminate_all we s2025-12-30
OSV
CVE-2023-54188: In the Linux kernel, the following vulnerability has been resolved: dmaengine: apple-admac: Fix 'current_tx' not getting freed In terminate_all we sho2025-12-30
OSV
dmaengine: apple-admac: Fix 'current_tx' not getting freed2025-12-30

📋Vendor Advisories

2
Red Hat
kernel: dmaengine: apple-admac: Fix 'current_tx' not getting freed2025-12-30
Debian
CVE-2023-54188: linux - In the Linux kernel, the following vulnerability has been resolved: dmaengine: ...2023

🕵️Threat Intelligence

1
Wiz
CVE-2023-54188 Impact, Exploitability, and Mitigation Steps | Wiz