CVE-2023-53443

Summary

In the Linux kernel, the following vulnerability has been resolved:

mfd: arizona: Use pm_runtime_resume_and_get() to prevent refcnt leak

In arizona_clk32k_enable(), we should use pm_runtime_resume_and_get() as pm_runtime_get_sync() will increase the refcnt even when it returns an error.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux247fa1920deeb1064e36c0a34410f4d63503b3d4 < 7195e642b49af60d4120fa1b45bd812ba528174faffected
LinuxLinux247fa1920deeb1064e36c0a34410f4d63503b3d4 < 754e81ff44061dda68da0fd4ef51bd1aa9fbf2cfaffected
LinuxLinux247fa1920deeb1064e36c0a34410f4d63503b3d4 < 5a47bb71b1a94a279144fc3031d3c4591b38dd16affected
LinuxLinux247fa1920deeb1064e36c0a34410f4d63503b3d4 < 9893771097b22a8743a446e45994a177795ca4daaffected
LinuxLinux247fa1920deeb1064e36c0a34410f4d63503b3d4 < dc9437e9889c3dacf1f320e3cf08da74127573feaffected
LinuxLinux247fa1920deeb1064e36c0a34410f4d63503b3d4 < 4414a7ab80cebf715045e3c4d465feefbad21139affected
LinuxLinux3.10affected
LinuxLinux0 < 3.10unaffected
LinuxLinux5.4.235 <= 5.4.*unaffected
LinuxLinux5.10.173 <= 5.10.*unaffected
LinuxLinux5.15.100 <= 5.15.*unaffected
LinuxLinux6.1.18 <= 6.1.*unaffected
LinuxLinux6.2.5 <= 6.2.*unaffected
LinuxLinux6.3 <= *unaffected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References