CVE-2023-53514

MEDIUM EPSS 3.3%
Published Oct 1, 20259mo ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published Oct 1, 2025 9mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: gpu: host1x: Fix memory leak of device names The device names allocated by dev_set_name() need be freed before module unloading, but they can not be freed because the kobject's refcount which was set in device_initialize() has not be decreased to 0. As comment of device_add() says, if it fails, use only put_device() drop the refcount, then the name will be freed in kobejct_cleanup(). device_del() and put_device() can be replaced with device_unregister(), so call it to unregister the added successfully devices, and just call put_device() to the not added device. Add a release() function to device to avoid null release() function WARNING in device_release(), it's empty, because the context devices are freed together in host1x_memory_context_list_free().

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
3.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 3

VendorProductVersionRange
linuxlinux_kernel*≥6.0  –  <6.1.28
linuxlinux_kernel*≥6.2  –  <6.2.15
linuxlinux_kernel*≥6.3  –  <6.3.2

References 4

  • git.kernel.org https://git.kernel.org/stable/c/3ab0f5ddb761270b11d8c90b8550a59666cfc9bb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/55879dad0f3ae8468444b42f785ad79eac05fe5b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/958c6cbc32996c375af42db96ceba021a1959899
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dba1aeaaf3d0e2f996cb0a5609e5e85ecf405a5c
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/3ab0f5ddb761270b11d8c90b8550a59666cfc9bb
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/55879dad0f3ae8468444b42f785ad79eac05fe5b
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/958c6cbc32996c375af42db96ceba021a1959899
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/dba1aeaaf3d0e2f996cb0a5609e5e85ecf405a5c
    Patch