5.5

CVE-2023-53288

EPSS 0.02%
Veröffentlicht 16.09.2025 08:11:21
Zuletzt bearbeitet 03.12.2025 16:44:27
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

drm/client: Fix memory leak in drm_client_modeset_probe

When a new mode is set to modeset->mode, the previous mode should be freed.
This fixes the following kmemleak report:

drm_mode_duplicate+0x45/0x220 [drm]
drm_client_modeset_probe+0x944/0xf50 [drm]
__drm_fb_helper_initial_config_and_unlock+0xb4/0x2c0 [drm_kms_helper]
drm_fbdev_client_hotplug+0x2bc/0x4d0 [drm_kms_helper]
drm_client_register+0x169/0x240 [drm]
ast_pci_probe+0x142/0x190 [ast]
local_pci_probe+0xdc/0x180
work_for_cpu_fn+0x4e/0xa0
process_one_work+0x8b7/0x1540
worker_thread+0x70a/0xed0
kthread+0x29f/0x340
ret_from_fork+0x1f/0x30

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version < 5.4.251

Linux ≫ Linux Kernel Version >= 5.5 < 5.10.188

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.123

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.42

Linux ≫ Linux Kernel Version >= 6.2 < 6.4.7

Linux ≫ Linux Kernel Version6.5 Updaterc1

Linux ≫ Linux Kernel Version6.5 Updaterc2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.03

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

https://git.kernel.org/stable/c/5d580017bdb9b3e930b6009e467e5e1589f8ca8a

Patch

https://git.kernel.org/stable/c/5f2a12f64347f535c6ef55fa7eb36a2874d69b59

Patch

https://git.kernel.org/stable/c/1369d0c586ad44f2d18fe2f4cbc5bcb24132fa71

Patch

https://git.kernel.org/stable/c/917bef37cfaca07781c6fbaf6cd9404d27e64e6f

Patch

https://git.kernel.org/stable/c/8108a494639e56aea77e7196a1d6ea89792b9d4a

Patch

https://git.kernel.org/stable/c/2329cc7a101af1a844fbf706c0724c0baea38365

Patch

https://nvd.nist.gov/vuln/detail/CVE-2023-53288

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53288

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53288

EUVD