CVE-2023-53704
BaseFortify
Publication date: 2025-10-22
Last updated on: 2025-10-22
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel involves the clk-imx8mp driver where error handling was improved by replacing manual memory management functions (of_iomap() and kzalloc()) with device-managed versions (devm_of_iomap() and devm_kzalloc()). This change prevents potential memory leaks by automatically releasing memory when the device or driver is removed. Additionally, redundant manual memory release calls were removed, and error checking was added for the function of_clk_add_hw_provider to make the program more robust.
How can this vulnerability impact me? :
The vulnerability could lead to potential memory leaks in the Linux kernel's clk-imx8mp driver, which may cause increased memory usage and reduced system stability or performance over time. By improving error handling and memory management, the fix reduces the risk of such leaks and enhances the robustness of the system.