CVE-2023-53544

high

Description

In the Linux kernel, the following vulnerability has been resolved: cpufreq: davinci: Fix clk use after free The remove function first frees the clks and only then calls cpufreq_unregister_driver(). If one of the cpufreq callbacks is called just before cpufreq_unregister_driver() is run, the freed clks might be used.

References

https://git.kernel.org/stable/c/ab05ae4ab831f64bbc427592c86f599ed9c4324f

https://git.kernel.org/stable/c/a5f024d0e6f91e05c816ad4ee8837173369dd5cb

https://git.kernel.org/stable/c/66b3bbe6fbd8dd410868e5b53ac3944a934b9310

https://git.kernel.org/stable/c/5d8f384a9b4fc50f6a18405f1c08e5a87a77b5b3

Details

Source: Mitre, NVD

Published: 2025-10-04

Updated: 2025-10-06

Risk Information

CVSS v2

Base Score: 7.2

Vector: CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00018