CVE-2023-53719

low

Description

In the Linux kernel, the following vulnerability has been resolved: serial: arc_uart: fix of_iomap leak in `arc_serial_probe` Smatch reports: drivers/tty/serial/arc_uart.c:631 arc_serial_probe() warn: 'port->membase' from of_iomap() not released on lines: 631. In arc_serial_probe(), if uart_add_one_port() fails, port->membase is not released, which would cause a resource leak. To fix this, I replace of_iomap with devm_platform_ioremap_resource.

References

https://git.kernel.org/stable/c/f76a18e53a66c0ef2938276110717b3805720cd9

https://git.kernel.org/stable/c/8ab5fc55d7f65d58a3c3aeadf11bdf60267cd2bd

https://git.kernel.org/stable/c/7525aa211758cc023a371e010d16ceaae1057807

https://git.kernel.org/stable/c/40a462313ba4f337a2b419e7fb4a670f3dd95e14

https://git.kernel.org/stable/c/3f00df24a5021a6f02c1830a290acd4bceb22a2d

https://git.kernel.org/stable/c/153017561d2804cfae87cc9aa377aa84dd906ae1

https://git.kernel.org/stable/c/081790eee6b47389a0d895262086d64c6a38d6e5

Details

Source: Mitre, NVD

Published: 2025-10-22

Updated: 2025-10-22

Risk Information

CVSS v2

Base Score: 1.7

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:P

Severity: Low

CVSS v3

Base Score: 3.3

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Severity: Low

EPSS

EPSS: 0.00024