CVE-2023-53436
EUVD-2025-2985018.09.2025, 16:15
In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if device_add() fails If device_add() returns error, the name allocated by dev_set_name() needs be freed. As the comment of device_add() says, put_device() should be used to give up the reference in the error path. So fix this by calling put_device(), then the name can be freed in kobject_cleanp().Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 4.2 ≤ 𝑥 < 4.14.323 |
| linux | linux_kernel | 4.15 ≤ 𝑥 < 4.19.292 |
| linux | linux_kernel | 4.20 ≤ 𝑥 < 5.4.254 |
| linux | linux_kernel | 5.5 ≤ 𝑥 < 5.10.191 |
| linux | linux_kernel | 5.11 ≤ 𝑥 < 5.15.127 |
| linux | linux_kernel | 5.16 ≤ 𝑥 < 6.1.46 |
| linux | linux_kernel | 6.2 ≤ 𝑥 < 6.4.11 |
| linux | linux_kernel | 6.5:rc1 |
| linux | linux_kernel | 6.5:rc2 |
| linux | linux_kernel | 6.5:rc3 |
| linux | linux_kernel | 6.5:rc4 |
| linux | linux_kernel | 6.5:rc5 |
𝑥
= Vulnerable software versions
Debian Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| cluster-md-kmp-default |
| ||||||||||||||||||
| dlm-kmp-default |
| ||||||||||||||||||
| gfs2-kmp-default |
| ||||||||||||||||||
| kernel-64kb |
| ||||||||||||||||||
| kernel-azure |
| ||||||||||||||||||
| kernel-default |
| ||||||||||||||||||
| kernel-default-base |
| ||||||||||||||||||
| kernel-default-man |
| ||||||||||||||||||
| kernel-obs-build |
| ||||||||||||||||||
| kernel-source |
| ||||||||||||||||||
| kernel-source-azure |
| ||||||||||||||||||
| kernel-zfcpdump |
| ||||||||||||||||||
| ocfs2-kmp-default |
| ||||||||||||||||||
| reiserfs-kmp-default |
|
Common Weakness Enumeration
References