CVE-2023-53459
BaseFortify
Publication date: 2025-10-01
Last updated on: 2026-01-16
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | 6.2 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-416 | The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer. |
Attack-Flow Graph
AI Powered Q&A
How can this vulnerability impact me? :
This vulnerability can lead to a Use-After-Free condition, which may cause system instability, crashes, or potentially allow an attacker to execute arbitrary code or cause denial of service by exploiting the invalid memory access.
Can you explain this vulnerability to me?
This vulnerability is a Use-After-Free (UAF) issue in the Linux kernel's HID driver for the mcp-2221 device. It occurs if the device is plugged or unplugged without allowing the mcp_init_work() function to complete, which can lead to the device's data structure being freed while still in use by delayed work. This can cause the system to access invalid memory. The issue is fixed by canceling the delayed work item to prevent it from re-queuing itself.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, ensure that the delayed_work item related to mcp-2221 is properly canceled using cancel_delayed_work_sync to prevent the work item from requeuing itself. This prevents use-after-free conditions when the device is plugged or unplugged rapidly.