CVE-2023-54266

medium

Description

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb: m920x: Fix a potential memory leak in m920x_i2c_xfer() 'read' is freed when it is known to be NULL, but not when a read error occurs. Revert the logic to avoid a small leak, should a m920x_read() call fail.

References

https://git.kernel.org/stable/c/ea9ef6c2e001c5dc94bee35ebd1c8a98621cf7b8

https://git.kernel.org/stable/c/d13a84874a2e0236c9325b3adc8e126d0888ad6b

https://git.kernel.org/stable/c/c0178e938f110cdf6937f26975c0c951dbb1d9db

https://git.kernel.org/stable/c/809623fedc31f4e74039d93bb75a8993635d7534

https://git.kernel.org/stable/c/7ca7cd02114ac8caa6b0a64734b9af6be1559353

https://git.kernel.org/stable/c/75d6ef197c488cd852493b4a419274e3489da79d

https://git.kernel.org/stable/c/4feed3dfca722c6d74865a37cab853c58e6aa190

https://git.kernel.org/stable/c/2cc9f11aeae2887a4db25c27323fc445f4b49e86

https://git.kernel.org/stable/c/2b6e20ef0585a467c24c7e4fde28518e5b33225a

Details

Source: Mitre, NVD

Published: 2025-12-30

Updated: 2025-12-31

Risk Information

CVSS v2

Base Score: 3.8

Vector: CVSS2#AV:L/AC:H/Au:S/C:N/I:N/A:C

Severity: Low

CVSS v3

Base Score: 4.7

Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Severity: Medium

EPSS

EPSS: 0.00033