CVE-2023-54228

Summary

In the Linux kernel, the following vulnerability has been resolved:

regulator: raa215300: Fix resource leak in case of error

The clk_register_clkdev() allocates memory by calling vclkdev_alloc() and this memory is not freed in the error path. Similarly, resources allocated by clk_register_fixed_rate() are not freed in the error path.

Fix these issues by using devm_clk_hw_register_fixed_rate() and devm_clk_hw_register_clkdev().

After this, the static variable clk is not needed. Replace it with  local variable hw in probe() and drop calling clk_unregister_fixed_rate() from raa215300_rtc_unregister_device().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux7bce16630837c705f72e8fd53a11ae8c236236f4 < 2bf2d2ac9e67184dc99275875a6452ca6e3027ffaffected
LinuxLinux7bce16630837c705f72e8fd53a11ae8c236236f4 < e21ac64e669e960688e79bf5babeed63132dac8aaffected
LinuxLinux6.5affected
LinuxLinux0 < 6.5unaffected
LinuxLinux6.5.4 <= 6.5.*unaffected
LinuxLinux6.6 <= *unaffected

Weaknesses

References