CVE-2023-53453

MEDIUM EPSS 4.2%
Published Oct 1, 20259mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Oct 1, 2025 9mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: free iio for atombios when driver shutdown Fix below kmemleak when unload radeon driver: unreferenced object 0xffff9f8608ede200 (size 512): comm "systemd-udevd", pid 326, jiffies 4294682822 (age 716.338s) hex dump (first 32 bytes): 00 00 00 00 c4 aa ec aa 14 ab 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<0000000062fadebe>] kmem_cache_alloc_trace+0x2f1/0x500 [<00000000b6883cea>] atom_parse+0x117/0x230 [radeon] [<00000000158c23fd>] radeon_atombios_init+0xab/0x170 [radeon] [<00000000683f672e>] si_init+0x57/0x750 [radeon] [<00000000566cc31f>] radeon_device_init+0x559/0x9c0 [radeon] [<0000000046efabb3>] radeon_driver_load_kms+0xc1/0x1a0 [radeon] [<00000000b5155064>] drm_dev_register+0xdd/0x1d0 [<0000000045fec835>] radeon_pci_probe+0xbd/0x100 [radeon] [<00000000e69ecca3>] pci_device_probe+0xe1/0x160 [<0000000019484b76>] really_probe.part.0+0xc1/0x2c0 [<000000003f2649da>] __driver_probe_device+0x96/0x130 [<00000000231c5bb1>] driver_probe_device+0x24/0xf0 [<0000000000a42377>] __driver_attach+0x77/0x190 [<00000000d7574da6>] bus_for_each_dev+0x7f/0xd0 [<00000000633166d2>] driver_attach+0x1e/0x30 [<00000000313b05b8>] bus_add_driver+0x12c/0x1e0 iio was allocated in atom_index_iio() called by atom_parse(), but it doesn't got released when the dirver is shutdown. Fix this kmemleak by free it in radeon_atombios_fini().

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
4.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 7

VendorProductVersionRange
linuxlinux_kernel*≥2.6.31  –  <4.14.308
linuxlinux_kernel*≥4.15  –  <4.19.276
linuxlinux_kernel*≥4.20  –  <5.4.235
linuxlinux_kernel*≥5.5  –  <5.10.173
linuxlinux_kernel*≥5.11  –  <5.15.99
linuxlinux_kernel*≥5.16  –  <6.1.16
linuxlinux_kernel*≥6.2  –  <6.2.3

References 8

  • git.kernel.org https://git.kernel.org/stable/c/107b8b542bb9dab4cbdc3276c85fbdd7f6782313
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4773fadedca918faec443daaca5e4ea1c0ced144
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9cdb96b55651c92fc949cfd54124406c3c912b6b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cb109cedbba11c33473e6780c256d8442a9e4460
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cda2f7efbc2d857220dad32e315a54565b285c1c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ce9e9d3dcbb0d1551ffd1a7f16e7c051f3ba4140
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e2791f2f4d1d804e45fa91b14295c326b64c65f1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f9f55fc64928b5e30d78f861c5fc76db9e769ebb
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/107b8b542bb9dab4cbdc3276c85fbdd7f6782313
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/4773fadedca918faec443daaca5e4ea1c0ced144
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/9cdb96b55651c92fc949cfd54124406c3c912b6b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cb109cedbba11c33473e6780c256d8442a9e4460
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cda2f7efbc2d857220dad32e315a54565b285c1c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ce9e9d3dcbb0d1551ffd1a7f16e7c051f3ba4140
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/e2791f2f4d1d804e45fa91b14295c326b64c65f1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f9f55fc64928b5e30d78f861c5fc76db9e769ebb
    Patch