CVE-2023-54183
Unknown Unknown - Not Provided
Resource Leak in Linux Kernel v4l2-core Media Component

Publication date: 2025-12-30

Last updated on: 2025-12-30

Assigner: kernel.org

Description
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-core: Fix a potential resource leak in v4l2_fwnode_parse_link() If fwnode_graph_get_remote_endpoint() fails, 'fwnode' is known to be NULL, so fwnode_handle_put() is a no-op. Release the reference taken from a previous fwnode_graph_get_port_parent() call instead. Also handle fwnode_graph_get_port_parent() failures. In order to fix these issues, add an error handling path to the function and the needed gotos.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-30
Last Modified
2025-12-30
Generated
2026-06-16
AI Q&A
2025-12-30
EPSS Evaluated
2026-06-15
NVD
CVE-2023-54183
EUVD
EUVD-2023-60458
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
linux kernel *
linux linux_kernel *
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-UNKNOWN
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability is a potential resource leak in the Linux kernel's media subsystem, specifically in the v4l2-core component within the function v4l2_fwnode_parse_link(). The issue arises when the function fwnode_graph_get_remote_endpoint() fails and returns NULL, causing the subsequent call to fwnode_handle_put() to be ineffective. Additionally, failures in fwnode_graph_get_port_parent() were not properly handled. The fix involves adding proper error handling and releasing references correctly to prevent resource leaks.

Impact Analysis

This vulnerability can lead to resource leaks in the Linux kernel's media subsystem, which may cause increased memory usage or system instability over time if the resources are not properly released. While it does not directly indicate remote code execution or privilege escalation, resource leaks can degrade system performance or reliability.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2023-54183. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart