CVE-2023-53579

In the Linux kernel, the following vulnerability has been resolved: gpio: mvebu: fix irq domain leak Uwe Kleine-König pointed out we still have one resource leak in the mvebu driver triggered on driver detach. Let's address it with a custom devm action.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://git.kernel.org/stable/c/44e2afbf650f3264519643fcc9e6b4d2f6e8d547	Patch
https://git.kernel.org/stable/c/644ee70267a934be27370f9aa618b29af7290544	Patch
https://git.kernel.org/stable/c/b19e90521286a03bc3793fd598f20277a8f99c85	Patch
https://git.kernel.org/stable/c/d9b791d8362359d241b4e8f4b4767c681ffdb6ef	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel:4.9:-::::::
	cpe:2.3:o:linux:linux_kernel:4.9:rc4::::::
	cpe:2.3:o:linux:linux_kernel:4.9:rc5::::::
	cpe:2.3:o:linux:linux_kernel:4.9:rc6::::::
	cpe:2.3:o:linux:linux_kernel:4.9:rc7::::::
	cpe:2.3:o:linux:linux_kernel:4.9:rc8::::::
	cpe:2.3:o:linux:linux_kernel:6.5:rc1::::::
	cpe:2.3:o:linux:linux_kernel:6.5:rc2::::::

History

No history.

Information

Published : 2025-10-04 16:15

Updated : 2026-03-23 18:41

NVD link : CVE-2023-53579

Mitre link : CVE-2023-53579

CVE.ORG link : CVE-2023-53579

JSON object : View

Products Affected

linux

linux_kernel

CWE

CWE-401

Missing Release of Memory after Effective Lifetime

{"id": "CVE-2023-53579", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2025-10-04T16:15:53.597", "references": [{"url": "https://git.kernel.org/stable/c/44e2afbf650f3264519643fcc9e6b4d2f6e8d547", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/644ee70267a934be27370f9aa618b29af7290544", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/b19e90521286a03bc3793fd598f20277a8f99c85", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/d9b791d8362359d241b4e8f4b4767c681ffdb6ef", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-401"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\ngpio: mvebu: fix irq domain leak\n\nUwe Kleine-K\u00f6nig pointed out we still have one resource leak in the mvebu\ndriver triggered on driver detach. Let's address it with a custom devm\naction."}], "lastModified": "2026-03-23T18:41:45.090", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DF2842FE-71A6-4182-B132-2372CFC813B1", "versionEndExcluding": "3.17", "versionStartIncluding": "3.16.40"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4CD318C-D206-4CC9-A58E-BF5E125BCC7D", "versionEndExcluding": "4.9", "versionStartIncluding": "4.8.9"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8D11BDF-FBA2-443E-B954-7B6A9E52D1BD", "versionEndExcluding": "5.15.124", "versionStartIncluding": "4.9.1"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9E3E7AD-3EAC-485A-8673-5A89FB889587", "versionEndExcluding": "6.1.43", "versionStartIncluding": "5.16"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6F5CB671-C757-4B7A-B3D3-283AFE20F0D7", "versionEndExcluding": "6.4.8", "versionStartIncluding": "6.2"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "592761F7-6672-484E-8490-1187F4CDD13E"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE21670A-9B31-4AED-93C4-171286BB2A56"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc5:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "059DF035-9B5B-4F84-8EDD-34534ECAA579"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc6:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B0288B1E-67AB-40F4-98C7-8C686510F664"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc7:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "73A5C6E1-051D-4FDC-8034-BE2896C639F3"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc8:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F96570B2-47BE-4DEF-AAD8-909913366EA0"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.5:rc1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B3E6E4D-E24E-4630-B00C-8C9901C597B0"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:6.5:rc2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4A01A71-0F09-4DB2-A02F-7EFFBE27C98D"}], "operator": "OR"}]}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}