5.5
CVE-2023-53300
- EPSS 0.14%
- Veröffentlicht 16.09.2025 08:11:31
- Zuletzt bearbeitet 14.01.2026 19:16:22
- CVE-Watchlists
- Unerledigt
media: hi846: Fix memleak in hi846_init_controls()
In the Linux kernel, the following vulnerability has been resolved: media: hi846: Fix memleak in hi846_init_controls() hi846_init_controls doesn't clean the allocated ctrl_hdlr in case there is a failure, which causes memleak. Add v4l2_ctrl_handler_free to free the resource properly.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Linux ≫ Linux Kernel Version >= 5.16 < 6.1.28
Linux ≫ Linux Kernel Version >= 6.2 < 6.2.15
Linux ≫ Linux Kernel Version >= 6.3 < 6.3.2
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.033 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 5.5 | 1.8 | 3.6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
CWE-401 Missing Release of Memory after Effective Lifetime
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.
https://git.kernel.org/stable/c/fd22e8c8c38fb40f130d3a60e52c59996a5bbae9
https://git.kernel.org/stable/c/12a80b1490e398f5ad7157508cf32b73511de5fc
https://git.kernel.org/stable/c/07f0f15e5db60c5b0722049d3251ef4a46dc3b76
https://git.kernel.org/stable/c/2649c1a20e8e399ee955d0e22192f9992662c3d2