CVE-2023-53249

Summary

In the Linux kernel, the following vulnerability has been resolved:

clk: imx: clk-imx8mn: fix memory leak in imx8mn_clocks_probe

Use devm_of_iomap() instead of of_iomap() to automatically handle the unused ioremap region.

If any error occurs, regions allocated by kzalloc() will leak, but using devm_kzalloc() instead will automatically free the memory using devm_kfree().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux96d6392b54dbb1ff2b39448a2516fa6abb33114b < 294321349bd3b0680847fc2bbe66b9ab3e522feaaffected
LinuxLinux96d6392b54dbb1ff2b39448a2516fa6abb33114b < 50b5ddde8fad5f0ffd239029d0956af633a0f9b1affected
LinuxLinux96d6392b54dbb1ff2b39448a2516fa6abb33114b < 9ba3693b0350b154fdd7830559bbc7b04c067096affected
LinuxLinux96d6392b54dbb1ff2b39448a2516fa6abb33114b < 9428cf0fbf4be9a24f3e15a0c166b861b12666afaffected
LinuxLinux96d6392b54dbb1ff2b39448a2516fa6abb33114b < d4fa5e47af1e7bb2bbcaac062b14216c00e92148affected
LinuxLinux96d6392b54dbb1ff2b39448a2516fa6abb33114b < 188d070de9132667956f5aadd98d2bd87d3eac89affected
LinuxLinux5.4affected
LinuxLinux0 < 5.4unaffected
LinuxLinux5.10.188 <= 5.10.*unaffected
LinuxLinux5.15.121 <= 5.15.*unaffected
LinuxLinux6.1.39 <= 6.1.*unaffected
LinuxLinux6.3.13 <= 6.3.*unaffected
LinuxLinux6.4.4 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References