CVE-2023-53674
MEDIUM EPSS 3.1%
Published Oct 7, 20258mo ago · Modified Jun 17, 20262w ago
5.5 CVSS 3.1
Published Oct 7, 2025 8mo ago
Last Modified Jun 17, 2026 2w ago
Description
In the Linux kernel, the following vulnerability has been resolved: clk: Fix memory leak in devm_clk_notifier_register() devm_clk_notifier_register() allocates a devres resource for clk notifier but didn't register that to the device, so the notifier didn't get unregistered on device detach and the allocated resource was leaked. Fix the issue by registering the resource through devres_add(). This issue was found with kmemleak on a Chromebook.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High
Threat Intelligence
EPSS Exploit Probability
3.1% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-401
Affected Products 4
References 5
- git.kernel.org https://git.kernel.org/stable/c/49451db71b746df990888068961f1033f7c9b734
- git.kernel.org https://git.kernel.org/stable/c/7fb933e56f77a57ef7cfc59fc34cbbf1b1fa31ff
- git.kernel.org https://git.kernel.org/stable/c/a326cf0107b197e649bbaa2a2b1355894826ce32
- git.kernel.org https://git.kernel.org/stable/c/cb1b04fd4283fc8f9acefe0ddc61ba072ed44877
- git.kernel.org https://git.kernel.org/stable/c/efbbda79b2881a04dcd0e8f28634933d79e17e49
Remediation
- git.kernel.org https://git.kernel.org/stable/c/49451db71b746df990888068961f1033f7c9b734
- git.kernel.org https://git.kernel.org/stable/c/7fb933e56f77a57ef7cfc59fc34cbbf1b1fa31ff
- git.kernel.org https://git.kernel.org/stable/c/a326cf0107b197e649bbaa2a2b1355894826ce32
- git.kernel.org https://git.kernel.org/stable/c/cb1b04fd4283fc8f9acefe0ddc61ba072ed44877
- git.kernel.org https://git.kernel.org/stable/c/efbbda79b2881a04dcd0e8f28634933d79e17e49