CVE-2023-54275

low

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Fix memory leak in ath11k_peer_rx_frag_setup crypto_alloc_shash() allocates resources, which should be released by crypto_free_shash(). When ath11k_peer_find() fails, there has memory leak. Add missing crypto_free_shash() to fix this.

References

https://git.kernel.org/stable/c/ed3f83b3459a67a3ab9d806490ac304b567b1c2d

https://git.kernel.org/stable/c/e596b36e15a7158b0bb2d55077b6b381ee41020c

https://git.kernel.org/stable/c/64a78ec4f4579798d8e885aca9bdd707bca6b16b

https://git.kernel.org/stable/c/53c8a256e5d3f31d80186de03a3d2a7f747b2aa0

https://git.kernel.org/stable/c/137963e3b95776f1d57c62f249a93fe47e019a22

Details

Source: Mitre, NVD

Published: 2025-12-30

Updated: 2025-12-31

Risk Information

CVSS v2

Base Score: 1.7

Vector: CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:P

Severity: Low

CVSS v3

Base Score: 3.3

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Severity: Low

EPSS

EPSS: 0.00018