CVE-2023-53651

Summary

In the Linux kernel, the following vulnerability has been resolved:

Input: exc3000 - properly stop timer on shutdown

We need to stop the timer on driver unbind or probe failures, otherwise we get UAF/Oops.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7e577a17f2eefeef32f1106ebf91e7cd143ba654 < 526a177ac6353d65057eadb5d6edafc168f64484affected
LinuxLinux7e577a17f2eefeef32f1106ebf91e7cd143ba654 < bee57c20fc0ca5ef9b9a53a0335eab2ac9e9cae1affected
LinuxLinux7e577a17f2eefeef32f1106ebf91e7cd143ba654 < 79c81d137d36f9635bbcbc3916c0cccb418a61ddaffected
LinuxLinux4.15affected
LinuxLinux0 < 4.15unaffected
LinuxLinux6.1.20 <= 6.1.*unaffected
LinuxLinux6.2.3 <= 6.2.*unaffected
LinuxLinux6.3 <= *unaffected

Weaknesses

References