CVE-2023-53436

MEDIUM EPSS 3.4%
Published Sep 18, 20259mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Sep 18, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if device_add() fails If device_add() returns error, the name allocated by dev_set_name() needs be freed. As the comment of device_add() says, put_device() should be used to give up the reference in the error path. So fix this by calling put_device(), then the name can be freed in kobject_cleanp().

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
3.4% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 12

VendorProductVersionRange
linuxlinux_kernel*≥4.2  –  <4.14.323
linuxlinux_kernel*≥4.15  –  <4.19.292
linuxlinux_kernel*≥4.20  –  <5.4.254
linuxlinux_kernel*≥5.5  –  <5.10.191
linuxlinux_kernel*≥5.11  –  <5.15.127
linuxlinux_kernel*≥5.16  –  <6.1.46
linuxlinux_kernel*≥6.2  –  <6.4.11
linuxlinux_kernel6.5any
linuxlinux_kernel6.5any
linuxlinux_kernel6.5any
linuxlinux_kernel6.5any
linuxlinux_kernel6.5any

References 8

  • git.kernel.org https://git.kernel.org/stable/c/41320b18a0e0dfb236dba4edb9be12dba1878156
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/461f8ac666fa232afee5ed6420099913ec4e4ba2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/58889d5ad74cbc1c9595db74e13522b58b69b0ec
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7723a5d5d187626c4c640842e522cf4e9e39492e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/789275f7c0544374d40bc8d9c81f96751a41df45
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cea09922f5f75652d55b481ee34011fc7f19868b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ed0acb1ee2e9322b96611635a9ca9303d15ac76c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f830968d464f55e11bc9260a132fc77daa266aa3
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/41320b18a0e0dfb236dba4edb9be12dba1878156
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/461f8ac666fa232afee5ed6420099913ec4e4ba2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/58889d5ad74cbc1c9595db74e13522b58b69b0ec
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7723a5d5d187626c4c640842e522cf4e9e39492e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/789275f7c0544374d40bc8d9c81f96751a41df45
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cea09922f5f75652d55b481ee34011fc7f19868b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ed0acb1ee2e9322b96611635a9ca9303d15ac76c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f830968d464f55e11bc9260a132fc77daa266aa3
    Patch