CVE-2023-54169

medium

Description

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix memory leak in mlx5e_ptp_open When kvzalloc_node or kvzalloc failed in mlx5e_ptp_open, the memory pointed by "c" or "cparams" is not freed, which can lead to a memory leak. Fix by freeing the array in the error path.

References

https://git.kernel.org/stable/c/d543b649ffe58a0cb4b6948b3305069c5980a1fa

https://git.kernel.org/stable/c/83a8f7337a14cdb215c76a8f4cf3f3be8b59177d

https://git.kernel.org/stable/c/7035e3ae600c4e9cb3dc220c24dd77112ddff8b1

https://git.kernel.org/stable/c/4892e1e548b5bd6524c1c89df06e4849df26fc20

Details

Source: Mitre, NVD

Published: 2025-12-30

Updated: 2025-12-31

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 6.2

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00018