5.5
CVE-2023-53196
- EPSS 0.15%
- Veröffentlicht 15.09.2025 14:06:43
- Zuletzt bearbeitet 02.12.2025 19:13:50
- Quelle 416baaa9-dc9f-4396-8d5f-8c081f
- CVE-Watchlists
- Unerledigt
usb: dwc3: qcom: Fix potential memory leak
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: qcom: Fix potential memory leak Function dwc3_qcom_probe() allocates memory for resource structure which is pointed by parent_res pointer. This memory is not freed. This leads to memory leak. Use stack memory to prevent memory leak. Found by Linux Verification Center (linuxtesting.org) with SVACE.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.3 < 5.4.251
Linux ≫ Linux Kernel Version >= 5.5 < 5.10.188
Linux ≫ Linux Kernel Version >= 5.11 < 5.15.121
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.39
Linux ≫ Linux Kernel Version >= 6.2 < 6.4.4
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.15% | 0.041 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
https://git.kernel.org/stable/c/648a163cff21ea355c8765e882ba8bf66a870a3e
https://git.kernel.org/stable/c/74f8606ddfa450d2255b4e61472a7632def1e8c4
https://git.kernel.org/stable/c/b626cd5e4a87a281629e0c2b07519990077c0fbe
https://git.kernel.org/stable/c/c3b322b84ab5dda7eaca9ded763628b7467734f4
https://git.kernel.org/stable/c/134a7d4642f11daed6bbc378f930a54dd0322291
https://git.kernel.org/stable/c/097fb3ee710d4de83b8d4f5589e8ee13e0f0541e