CVE-2023-53371

Summary

In the Linux kernel, the following vulnerability has been resolved:

net/mlx5e: fix memory leak in mlx5e_fs_tt_redirect_any_create

The memory pointed to by the fs->any pointer is not freed in the error path of mlx5e_fs_tt_redirect_any_create, which can lead to a memory leak. Fix by freeing the memory in the error path, thereby making the error path identical to mlx5e_fs_tt_redirect_any_destroy().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux0f575c20bf0686caf3d82d6c626c2e1e4a4c36e6 < 75df2fe6d160e16be880aacacd521b135d7177c9affected
LinuxLinux0f575c20bf0686caf3d82d6c626c2e1e4a4c36e6 < 8a75a6f169c3df3a94802314aa61282772ac75b8affected
LinuxLinux0f575c20bf0686caf3d82d6c626c2e1e4a4c36e6 < 3250affdc658557a41df9c5fb567723e421f8bf2affected
LinuxLinux5.13affected
LinuxLinux0 < 5.13unaffected
LinuxLinux6.1.40 <= 6.1.*unaffected
LinuxLinux6.4.5 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References