CVE-2023-53316

EPSS 0.02%
Veröffentlicht 16.09.2025 16:11:53
Zuletzt bearbeitet 01.12.2025 21:23:37
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

drm/msm/dp: Free resources after unregistering them

The DP component's unbind operation walks through the submodules to
unregister and clean things up. But if the unbind happens because the DP
controller itself is being removed, all the memory for those submodules
has just been freed.

Change the order of these operations to avoid the many use-after-free
that otherwise happens in this code path.

Patchwork: https://patchwork.freedesktop.org/patch/542166/

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Linux ≫ Linux Kernel Version >= 5.10 < 5.10.188

Linux ≫ Linux Kernel Version >= 5.11 < 5.15.121

Linux ≫ Linux Kernel Version >= 5.16 < 6.1.39

Linux ≫ Linux Kernel Version >= 6.2 < 6.3.13

Linux ≫ Linux Kernel Version >= 6.4 < 6.4.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.037

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-416 Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

https://git.kernel.org/stable/c/c67a55f7cc8d767d624235bf1bcd0947e56abe0f

Patch

https://git.kernel.org/stable/c/3c3f3d35f5e05c468b048eb42a4f8c62c6655692

Patch

https://git.kernel.org/stable/c/4e9f1a2367aea7d61f6781213e25313cd983b0d7

Patch

https://git.kernel.org/stable/c/5c3278db06e332fdc14f3f297499fb88ded264d2

Patch

https://git.kernel.org/stable/c/ca47d0dc00968358c136a1847cfed550cedfd1b5

Patch

https://git.kernel.org/stable/c/fa0048a4b1fa7a50c8b0e514f5b428abdf69a6f8

Patch

https://nvd.nist.gov/vuln/detail/CVE-2023-53316

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53316

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53316

EUVD