CVE-2023-52571

In the Linux kernel, the following vulnerability has been resolved: power: supply: rk817: Fix node refcount leak Dan Carpenter reports that the Smatch static checker warning has found that there is another refcount leak in the probe function. While of_node_put() was added in one of the return paths, it should in fact be added for ALL return paths that return an error and at driver removal time.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.6:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.6:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.6:rc3:*:*:*:*:*:*

History

08 Apr 2025, 15:05

Type Values Removed Values Added
References () https://git.kernel.org/stable/c/488ef44c068e79752dba8eda0b75f524f111a695 - () https://git.kernel.org/stable/c/488ef44c068e79752dba8eda0b75f524f111a695 - Patch
References () https://git.kernel.org/stable/c/70326b46b6a043f7e7404b2ff678b033c06d6577 - () https://git.kernel.org/stable/c/70326b46b6a043f7e7404b2ff678b033c06d6577 - Patch
References () https://git.kernel.org/stable/c/fe6406238d5a24e9fb0286c71edd67b99d8db58d - () https://git.kernel.org/stable/c/fe6406238d5a24e9fb0286c71edd67b99d8db58d - Patch
First Time Linux linux Kernel
Linux
CWE CWE-401
CPE cpe:2.3:o:linux:linux_kernel:6.6:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.6:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:6.6:rc2:*:*:*:*:*:*

21 Nov 2024, 08:40

Type Values Removed Values Added
References () https://git.kernel.org/stable/c/488ef44c068e79752dba8eda0b75f524f111a695 - () https://git.kernel.org/stable/c/488ef44c068e79752dba8eda0b75f524f111a695 -
References () https://git.kernel.org/stable/c/70326b46b6a043f7e7404b2ff678b033c06d6577 - () https://git.kernel.org/stable/c/70326b46b6a043f7e7404b2ff678b033c06d6577 -
References () https://git.kernel.org/stable/c/fe6406238d5a24e9fb0286c71edd67b99d8db58d - () https://git.kernel.org/stable/c/fe6406238d5a24e9fb0286c71edd67b99d8db58d -

06 Nov 2024, 17:35

Type Values Removed Values Added
Summary
  • (es) En el kernel de Linux, se resolvió la siguiente vulnerabilidad: power: Supply: rk817: reparar la fuga de recuento de nodos Dan Carpenter informa que la advertencia del verificador estático Smatch encontró que hay otra fuga de recuento en la función de sonda. Si bien of_node_put() se agregó en una de las rutas de retorno, de hecho debería agregarse para TODAS las rutas de retorno que devuelven un error y en el momento de eliminar el controlador.
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.1

02 Mar 2024, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-03-02 22:15

Updated : 2025-04-08 15:05


NVD link : CVE-2023-52571

Mitre link : CVE-2023-52571

CVE.ORG link : CVE-2023-52571


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-401

Missing Release of Memory after Effective Lifetime