CVE-2023-53514

Summary

In the Linux kernel, the following vulnerability has been resolved:

gpu: host1x: Fix memory leak of device names

The device names allocated by dev_set_name() need be freed before module unloading, but they can not be freed because the kobject's refcount which was set in device_initialize() has not be decreased to 0.

As comment of device_add() says, if it fails, use only put_device() drop the refcount, then the name will be freed in kobejct_cleanup().

device_del() and put_device() can be replaced with device_unregister(), so call it to unregister the added successfully devices, and just call put_device() to the not added device.

Add a release() function to device to avoid null release() function WARNING in device_release(), it's empty, because the context devices are freed together in host1x_memory_context_list_free().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux8aa5bcb61612060429223d1fbb7a1c30a579fc1f < 958c6cbc32996c375af42db96ceba021a1959899affected
LinuxLinux8aa5bcb61612060429223d1fbb7a1c30a579fc1f < dba1aeaaf3d0e2f996cb0a5609e5e85ecf405a5caffected
LinuxLinux8aa5bcb61612060429223d1fbb7a1c30a579fc1f < 3ab0f5ddb761270b11d8c90b8550a59666cfc9bbaffected
LinuxLinux8aa5bcb61612060429223d1fbb7a1c30a579fc1f < 55879dad0f3ae8468444b42f785ad79eac05fe5baffected
LinuxLinux6.0affected
LinuxLinux0 < 6.0unaffected
LinuxLinux6.1.28 <= 6.1.*unaffected
LinuxLinux6.2.15 <= 6.2.*unaffected
LinuxLinux6.3.2 <= 6.3.*unaffected
LinuxLinux6.4 <= *unaffected

Weaknesses

References