CVE-2023-53518

high

Description

In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Fix leak in devfreq_dev_release() srcu_init_notifier_head() allocates resources that need to be released with a srcu_cleanup_notifier_head() call. Reported by kmemleak.

References

https://git.kernel.org/stable/c/ab192e5e5d3b48415909a8408acfd007a607bcc0

https://git.kernel.org/stable/c/8918025feb2f5f7c73f2495c158f22997e25cb02

https://git.kernel.org/stable/c/7462483446cb9986568ad7adae746ce5f18d2968

https://git.kernel.org/stable/c/64e6e0dc2d578c0a9e31cb4edd719f0a3ed98f6d

https://git.kernel.org/stable/c/5693d077595de721f9ddbf9d37f40e5409707dfe

https://git.kernel.org/stable/c/3354c401c68d70567d1ef25d12f4e22a7813a3c6

https://git.kernel.org/stable/c/29811f4b8255d4238cf326f3bb7129784766beab

https://git.kernel.org/stable/c/1640e9c72173911ad0fddb05012c01eafe082c4e

https://git.kernel.org/stable/c/111bafa210ae546bee7644be730c42df9c35b66e

Details

Source: Mitre, NVD

Published: 2025-10-01

Updated: 2025-10-02

Risk Information

CVSS v2

Base Score: 5.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 7.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Severity: High

EPSS

EPSS: 0.00033