CVE-2023-53725

Summary

In the Linux kernel, the following vulnerability has been resolved:

clocksource/drivers/cadence-ttc: Fix memory leak in ttc_timer_probe

Smatch reports: drivers/clocksource/timer-cadence-ttc.c:529 ttc_timer_probe() warn: 'timer_baseaddr' from of_iomap() not released on lines: 498,508,516.

timer_baseaddr may have the problem of not being released after use, I replaced it with the devm_of_iomap() function and added the clk_put() function to cleanup the "clk_ce" and "clk_cs".

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxe932900a3279b5dbb6d8f43c7b369003620e137c < e0a9cc90ea44a50d76a84f9f9bf1703d31fe45e9affected
LinuxLinuxe932900a3279b5dbb6d8f43c7b369003620e137c < 54cc10a0f4b01b522e9519014200f1b33bf7e4aaaffected
LinuxLinuxe932900a3279b5dbb6d8f43c7b369003620e137c < ebdff0986513a29be242aace0ef89b6c105b0bf0affected
LinuxLinuxe932900a3279b5dbb6d8f43c7b369003620e137c < 289e2054eeb63c9e133960731c342eeffad218d3affected
LinuxLinuxe932900a3279b5dbb6d8f43c7b369003620e137c < 919dd531ebb7514f205ae7aab87994337ebce1f6affected
LinuxLinuxe932900a3279b5dbb6d8f43c7b369003620e137c < 67d7eebbc424935dec61fb352d1ccae5d16cf429affected
LinuxLinuxe932900a3279b5dbb6d8f43c7b369003620e137c < 99744200f28b2cf5f50767447e51b4b4a977d145affected
LinuxLinuxe932900a3279b5dbb6d8f43c7b369003620e137c < 8b5bf64c89c7100c921bd807ba39b2eb003061abaffected
LinuxLinux3.10affected
LinuxLinux0 < 3.10unaffected
LinuxLinux4.19.291 <= 4.19.*unaffected
LinuxLinux5.4.251 <= 5.4.*unaffected
LinuxLinux5.10.188 <= 5.10.*unaffected
LinuxLinux5.15.121 <= 5.15.*unaffected
LinuxLinux6.1.39 <= 6.1.*unaffected
LinuxLinux6.3.13 <= 6.3.*unaffected
LinuxLinux6.4.4 <= 6.4.*unaffected
LinuxLinux6.5 <= *unaffected

Weaknesses

References