CVE-2023-53234

{"id": "CVE-2023-53234", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 1.8}]}, "published": "2025-09-15T15:15:50.420", "references": [{"url": "https://git.kernel.org/stable/c/13721a2ac66b246f5802ba1b75ad8637e53eeecc", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/23cc41c3f19c4d858c3708f1c0a06e94958e6c3b", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/50808d034e199fe3ff7a9d2068a4eebeb6b4098a", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/59e391b3fc507a15b7e8e9d9f4de87cae177c366", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/8c1655600f4f2839fb844fe8c70b2b65fadc7a56", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/ac099d94e0480c937aa9172ab64074981ca1a4d3", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/bf26b0e430ce34261f45959989edaf680b64d538", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}, {"url": "https://git.kernel.org/stable/c/c5a21a5501508ae3afa2fe6d5a3e74a37fa48df3", "tags": ["Patch"], "source": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-401"}]}], "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nwatchdog: Fix kmemleak in watchdog_cdev_register\n\nkmemleak reports memory leaks in watchdog_dev_register, as follows:\nunreferenced object 0xffff888116233000 (size 2048):\n comm \"\"modprobe\"\", pid 28147, jiffies 4353426116 (age 61.741s)\n hex dump (first 32 bytes):\n 80 fa b9 05 81 88 ff ff 08 30 23 16 81 88 ff ff .........0#.....\n 08 30 23 16 81 88 ff ff 00 00 00 00 00 00 00 00 .0#.............\n backtrace:\n [<000000007f001ffd>] __kmem_cache_alloc_node+0x157/0x220\n [<000000006a389304>] kmalloc_trace+0x21/0x110\n [<000000008d640eea>] watchdog_dev_register+0x4e/0x780 [watchdog]\n [<0000000053c9f248>] __watchdog_register_device+0x4f0/0x680 [watchdog]\n [<00000000b2979824>] watchdog_register_device+0xd2/0x110 [watchdog]\n [<000000001f730178>] 0xffffffffc10880ae\n [<000000007a1a8bcc>] do_one_initcall+0xcb/0x4d0\n [<00000000b98be325>] do_init_module+0x1ca/0x5f0\n [<0000000046d08e7c>] load_module+0x6133/0x70f0\n ...\n\nunreferenced object 0xffff888105b9fa80 (size 16):\n comm \"\"modprobe\"\", pid 28147, jiffies 4353426116 (age 61.741s)\n hex dump (first 16 bytes):\n 77 61 74 63 68 64 6f 67 31 00 b9 05 81 88 ff ff watchdog1.......\n backtrace:\n [<000000007f001ffd>] __kmem_cache_alloc_node+0x157/0x220\n [<00000000486ab89b>] __kmalloc_node_track_caller+0x44/0x1b0\n [<000000005a39aab0>] kvasprintf+0xb5/0x140\n [<0000000024806f85>] kvasprintf_const+0x55/0x180\n [<000000009276cb7f>] kobject_set_name_vargs+0x56/0x150\n [<00000000a92e820b>] dev_set_name+0xab/0xe0\n [<00000000cec812c6>] watchdog_dev_register+0x285/0x780 [watchdog]\n [<0000000053c9f248>] __watchdog_register_device+0x4f0/0x680 [watchdog]\n [<00000000b2979824>] watchdog_register_device+0xd2/0x110 [watchdog]\n [<000000001f730178>] 0xffffffffc10880ae\n [<000000007a1a8bcc>] do_one_initcall+0xcb/0x4d0\n [<00000000b98be325>] do_init_module+0x1ca/0x5f0\n [<0000000046d08e7c>] load_module+0x6133/0x70f0\n ...\n\nThe reason is that put_device is not be called if cdev_device_add fails\nand wdd->id != 0.\n\nwatchdog_cdev_register\n wd_data = kzalloc [1]\n err = dev_set_name [2]\n ..\n err = cdev_device_add\n if (err) {\n if (wdd->id == 0) { // wdd->id != 0\n ..\n }\n return err; // [1],[2] would be leaked\n\nTo fix it, call put_device in all wdd->id cases."}], "lastModified": "2025-12-03T19:46:39.310", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F06A06D-F043-4FC9-8009-F0FF564F7BE3", "versionEndExcluding": "4.10", "versionStartIncluding": "4.9.225"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E1FBE0A-26CC-4282-B501-BD09D83D5D84", "versionEndExcluding": "4.14.308", "versionStartIncluding": "4.14.182"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5455A75D-91F0-4B25-BC8B-D3E815C7F427", "versionEndExcluding": "4.19.276", "versionStartIncluding": "4.19.93"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7780B7C-3278-476C-AA1E-432CCA8F6041", "versionEndExcluding": "5.4.235", "versionStartIncluding": "5.4.8"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4D810CFB-B7C5-493C-B98A-0D5F0D8A47B6", "versionEndExcluding": "5.10.173", "versionStartIncluding": "5.5"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D7E5BB5-018B-46B7-A2C4-1ADB75099822", "versionEndExcluding": "5.15.100", "versionStartIncluding": "5.11"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8D24FD5-5A98-4042-9419-39DCFCBEFFF5", "versionEndExcluding": "6.1.18", "versionStartIncluding": "5.16"}, {"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0575B33B-A320-4E51-84CA-10C937341E02", "versionEndExcluding": "6.2.5", "versionStartIncluding": "6.2"}], "operator": "OR"}]}], "sourceIdentifier": "416baaa9-dc9f-4396-8d5f-8c081fb06d67"}