CVE-2023-53482

EUVD-2025-32769
In the Linux kernel, the following vulnerability has been resolved:

iommu: Fix error unwind in iommu_group_alloc()

If either iommu_group_grate_file() fails then the
iommu_group is leaked.

Destroy it on these error paths.

Found by kselftest/iommu/iommufd_fail_nth
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
4.11 ≤
𝑥
< 5.15.99
linuxlinux_kernel
5.16 ≤
𝑥
< 6.1.16
linuxlinux_kernel
6.2 ≤
𝑥
< 6.2.3
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.148-1
fixed
bookworm (security)
6.1.153-1
fixed
bullseye
vulnerable
bullseye (security)
vulnerable
forky
6.16.8-1
fixed
sid
6.16.9-1
fixed
trixie
6.12.43-1
fixed
trixie (security)
6.12.48-1
fixed
References
https://git.kernel.org/stable/c/4c23124b45ee0aa895ed8d5d08871ae6b15ee336
https://git.kernel.org/stable/c/4daa861174d56023c2068ddb03de0752f07fa199
https://git.kernel.org/stable/c/8602fa38a63fc689eca29c8c586fac2d8a1f8739
https://git.kernel.org/stable/c/f119ef452e2d82d912797273cb790a86f1125b3e