CVE-2023-54230

medium

Description

In the Linux kernel, the following vulnerability has been resolved: amba: bus: fix refcount leak commit 5de1540b7bc4 ("drivers/amba: create devices from device tree") increases the refcount of of_node, but not releases it in amba_device_release, so there is refcount leak. By using of_node_put to avoid refcount leak.

References

https://git.kernel.org/stable/c/e312cbdc11305568554a9e18a2ea5c2492c183f3

https://git.kernel.org/stable/c/9baf2278b3eed2c50112169121257d8a6ee0606c

https://git.kernel.org/stable/c/94e398df32e850f26828690ee62f7441979583cc

https://git.kernel.org/stable/c/9062ce0ccbd82fbe81cc839a512c0ad90847e01c

https://git.kernel.org/stable/c/8b60a706166de5de82314494704c2419e7657bf8

https://git.kernel.org/stable/c/81ff633a88be2482c163d3acd2801d501261ce6a

https://git.kernel.org/stable/c/4f1807fddd9bf175ee5e14fffc6b6106e4b297ef

https://git.kernel.org/stable/c/206fadb7278ceac7593dd0b945a77b9df856a674

https://git.kernel.org/stable/c/03db4fe7917bb160eeccf3968835475fa32b7e10

Details

Source: Mitre, NVD

Published: 2025-12-30

Updated: 2025-12-31

Risk Information

CVSS v2

Base Score: 3.8

Vector: CVSS2#AV:L/AC:H/Au:S/C:N/I:N/A:C

Severity: Low

CVSS v3

Base Score: 4.7

Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00033