CVE-2023-53300

Summary

In the Linux kernel, the following vulnerability has been resolved:

media: hi846: Fix memleak in hi846_init_controls()

hi846_init_controls doesn't clean the allocated ctrl_hdlr in case there is a failure, which causes memleak. Add v4l2_ctrl_handler_free to free the resource properly.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe8c0882685f9152f0d729664a12bcbe749cb7736 < fd22e8c8c38fb40f130d3a60e52c59996a5bbae9affected
LinuxLinuxe8c0882685f9152f0d729664a12bcbe749cb7736 < 12a80b1490e398f5ad7157508cf32b73511de5fcaffected
LinuxLinuxe8c0882685f9152f0d729664a12bcbe749cb7736 < 07f0f15e5db60c5b0722049d3251ef4a46dc3b76affected
LinuxLinuxe8c0882685f9152f0d729664a12bcbe749cb7736 < 2649c1a20e8e399ee955d0e22192f9992662c3d2affected
LinuxLinux5.16affected
LinuxLinux0 < 5.16unaffected
LinuxLinux6.1.28 <= 6.1.*unaffected
LinuxLinux6.2.15 <= 6.2.*unaffected
LinuxLinux6.3.2 <= 6.3.*unaffected
LinuxLinux6.4 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References