CVE - CVE-2023-52670

CVE-ID
CVE-2023-52670	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
In the Linux kernel, the following vulnerability has been resolved: rpmsg: virtio: Free driver_override when rpmsg_remove() Free driver_override when rpmsg_remove(), otherwise the following memory leak will occur: unreferenced object 0xffff0000d55d7080 (size 128): comm "kworker/u8:2", pid 56, jiffies 4294893188 (age 214.272s) hex dump (first 32 bytes): 72 70 6d 73 67 5f 6e 73 00 00 00 00 00 00 00 00 rpmsg_ns........ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<000000009c94c9c1>] __kmem_cache_alloc_node+0x1f8/0x320 [<000000002300d89b>] __kmalloc_node_track_caller+0x44/0x70 [<00000000228a60c3>] kstrndup+0x4c/0x90 [<0000000077158695>] driver_set_override+0xd0/0x164 [<000000003e9c4ea5>] rpmsg_register_device_override+0x98/0x170 [<000000001c0c89a8>] rpmsg_ns_register_device+0x24/0x30 [<000000008bbf8fa2>] rpmsg_probe+0x2e0/0x3ec [<00000000e65a68df>] virtio_dev_probe+0x1c0/0x280 [<00000000443331cc>] really_probe+0xbc/0x2dc [<00000000391064b1>] __driver_probe_device+0x78/0xe0 [<00000000a41c9a5b>] driver_probe_device+0xd8/0x160 [<000000009c3bd5df>] __device_attach_driver+0xb8/0x140 [<0000000043cd7614>] bus_for_each_drv+0x7c/0xd4 [<000000003b929a36>] __device_attach+0x9c/0x19c [<00000000a94e0ba8>] device_initial_probe+0x14/0x20 [<000000003c999637>] bus_probe_device+0xa0/0xac
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:https://git.kernel.org/stable/c/229ce47cbfdc7d3a9415eb676abbfb77d676cb08 URL:https://git.kernel.org/stable/c/229ce47cbfdc7d3a9415eb676abbfb77d676cb08 MISC:https://git.kernel.org/stable/c/2d27a7b19cb354c6d04bcdc9239e261ff29858d6 URL:https://git.kernel.org/stable/c/2d27a7b19cb354c6d04bcdc9239e261ff29858d6 MISC:https://git.kernel.org/stable/c/4e6cef3fae5c164968118a13f3fe293700adc81a URL:https://git.kernel.org/stable/c/4e6cef3fae5c164968118a13f3fe293700adc81a MISC:https://git.kernel.org/stable/c/69ca89d80f2c8a1f5af429b955637beea7eead30 URL:https://git.kernel.org/stable/c/69ca89d80f2c8a1f5af429b955637beea7eead30 MISC:https://git.kernel.org/stable/c/9a416d624e5fb7246ea97c11fbfea7e0e27abf43 URL:https://git.kernel.org/stable/c/9a416d624e5fb7246ea97c11fbfea7e0e27abf43 MISC:https://git.kernel.org/stable/c/d5362c37e1f8a40096452fc201c30e705750e687 URL:https://git.kernel.org/stable/c/d5362c37e1f8a40096452fc201c30e705750e687 MISC:https://git.kernel.org/stable/c/dd50fe18c234bd5ff22f658f4d414e8fa8cd6a5d URL:https://git.kernel.org/stable/c/dd50fe18c234bd5ff22f658f4d414e8fa8cd6a5d MISC:https://git.kernel.org/stable/c/f4bb1d5daf77b1a95a43277268adf0d1430c2346 URL:https://git.kernel.org/stable/c/f4bb1d5daf77b1a95a43277268adf0d1430c2346 MLIST:[debian-lts-announce] 20240625 [SECURITY] [DLA 3842-1] linux-5.10 security update URL:https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html MLIST:[debian-lts-announce] 20240627 [SECURITY] [DLA 3840-1] linux security update URL:https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html
Assigning CNA
kernel.org
Date Record Created
20240307	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20240307)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)