CVE-2023-54001

medium

Description

In the Linux kernel, the following vulnerability has been resolved: staging: r8712: Fix memory leak in _r8712_init_xmit_priv() In the above mentioned routine, memory is allocated in several places. If the first succeeds and a later one fails, the routine will leak memory. This patch fixes commit 2865d42c78a9 ("staging: r8712u: Add the new driver to the mainline kernel"). A potential memory leak in r8712_xmit_resource_alloc() is also addressed.

References

https://git.kernel.org/stable/c/fc511ae405f7ba29fbcb0246061ec15c272386e1

https://git.kernel.org/stable/c/acacdbe0f740ca8c5d5da73d50870903a3ded677

https://git.kernel.org/stable/c/ac83631230f77dda94154ed0ebfd368fc81c70a3

https://git.kernel.org/stable/c/874555472c736813ba1f4baf0b4c09c8e26d81ea

https://git.kernel.org/stable/c/41e05572e871b10dbdc168c76175c97982daf4a4

Details

Source: Mitre, NVD

Published: 2025-12-24

Updated: 2025-12-29

Risk Information

CVSS v2

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018