CVE-2023-54020

EPSS 0.03%
Veröffentlicht 24.12.2025 10:55:50
Zuletzt bearbeitet 29.12.2025 15:58:56
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: sf-pdma: pdma_desc memory leak fix

Commit b2cc5c465c2c ("dmaengine: sf-pdma: Add multithread support for a
DMA channel") changed sf_pdma_prep_dma_memcpy() to unconditionally
allocate a new sf_pdma_desc each time it is called.

The driver previously recycled descs, by checking the in_use flag, only
allocating additional descs if the existing one was in use. This logic
was removed in commit b2cc5c465c2c ("dmaengine: sf-pdma: Add multithread
support for a DMA channel"), but sf_pdma_free_desc() was not changed to
handle the new behaviour.

As a result, each time sf_pdma_prep_dma_memcpy() is called, the previous
descriptor is leaked, over time leading to memory starvation:

  unreferenced object 0xffffffe008447300 (size 192):
  comm "irq/39-mchp_dsc", pid 343, jiffies 4294906910 (age 981.200s)
  hex dump (first 32 bytes):
    00 00 00 ff 00 00 00 00 b8 c1 00 00 00 00 00 00  ................
    00 00 70 08 10 00 00 00 00 00 00 c0 00 00 00 00  ..p.............
  backtrace:
    [<00000000064a04f4>] kmemleak_alloc+0x1e/0x28
    [<00000000018927a7>] kmem_cache_alloc+0x11e/0x178
    [<000000002aea8d16>] sf_pdma_prep_dma_memcpy+0x40/0x112

Add the missing kfree() to sf_pdma_free_desc(), and remove the redundant
in_use flag.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < ad222c9af25e3f074c180e389b3477dce42afc4f

Version 5ab2782c944e324008ef5d658f2494a9f0e3c5ac

Status affected

Version < 03fece43fa109beba7cc9948c02f5e2d1205d607

Version b2cc5c465c2cb8ab697c3fd6583c614e3f6cfbcc

Status affected

Version < 8bd5040bd43f2b5ba3c898b09a3197a0c7ace126

Version b2cc5c465c2cb8ab697c3fd6583c614e3f6cfbcc

Status affected

Version < b02e07015a5ac7bbc029da931ae17914b8ae0339

Version b2cc5c465c2cb8ab697c3fd6583c614e3f6cfbcc

Status affected

Version b9b4992f897be9b0b9e3a3b956cab6b75ccc3f11

Status affected

Version 4c7350b1dd8a192af844de32fc99b9e34c876fda

Status affected

Version a93b3f1e11971a91b6441b6d47488f4492cc113f

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 6.0

Status affected

Version < 6.0

Version 0

Status unaffected

Version <= 5.15.*

Version 5.15.99

Status unaffected

Version <= 6.1.*

Version 6.1.16

Status unaffected

Version <= 6.2.*

Version 6.2.3

Status unaffected

Version <= *

Version 6.3

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.064

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/ad222c9af25e3f074c180e389b3477dce42afc4f

https://git.kernel.org/stable/c/03fece43fa109beba7cc9948c02f5e2d1205d607

https://git.kernel.org/stable/c/8bd5040bd43f2b5ba3c898b09a3197a0c7ace126

https://git.kernel.org/stable/c/b02e07015a5ac7bbc029da931ae17914b8ae0339

https://nvd.nist.gov/vuln/detail/CVE-2023-54020

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54020

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54020

EUVD