CVE-2023-53249

In the Linux kernel, the following vulnerability has been resolved:

clk: imx: clk-imx8mn: fix memory leak in imx8mn_clocks_probe

Use devm_of_iomap() instead of of_iomap() to automatically handle
the unused ioremap region.

If any error occurs, regions allocated by kzalloc() will leak,
but using devm_kzalloc() instead will automatically free the memory
using devm_kfree().
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
LinuxCNA
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 3%
VendorProductVersion
linuxlinux_kernel
5.4 ≤
𝑥
< 5.10.188
linuxlinux_kernel
5.11 ≤
𝑥
< 5.15.121
linuxlinux_kernel
5.16 ≤
𝑥
< 6.1.39
linuxlinux_kernel
6.2 ≤
𝑥
< 6.3.13
linuxlinux_kernel
6.4 ≤
𝑥
< 6.4.4
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.237-1
fixed
bookworm
6.1.148-1
fixed
bookworm (security)
6.1.147-1
fixed
trixie
6.12.43-1
fixed
trixie (security)
6.12.41-1
fixed
forky
6.16.3-1
fixed
sid
6.16.7-1
fixed
Common Weakness Enumeration
References
https://git.kernel.org/stable/c/188d070de9132667956f5aadd98d2bd87d3eac89
https://git.kernel.org/stable/c/294321349bd3b0680847fc2bbe66b9ab3e522fea
https://git.kernel.org/stable/c/50b5ddde8fad5f0ffd239029d0956af633a0f9b1
https://git.kernel.org/stable/c/9428cf0fbf4be9a24f3e15a0c166b861b12666af
https://git.kernel.org/stable/c/9ba3693b0350b154fdd7830559bbc7b04c067096
https://git.kernel.org/stable/c/d4fa5e47af1e7bb2bbcaac062b14216c00e92148