CVE-2023-52661

MEDIUM

Linux Kernel < 6.1.83 - Memory Leak

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: drm/tegra: rgb: Fix missing clk_put() in the error handling paths of tegra_dc_rgb_probe() If clk_get_sys(..., "pll_d2_out0") fails, the clk_get_sys() call must be undone. Add the missing clk_put and a new 'put_pll_d_out0' label in the error handling path, and use it.

References (6)

[Patch] https://git.kernel.org/stable/c/2388c36e028fff7f8ffd515681a14c6c2c07fea7

[Patch] https://git.kernel.org/stable/c/45c8034db47842b25a3ab6139d71e13b4e67b9b3

[Patch] https://git.kernel.org/stable/c/5c8dc26e31b8b410ad1895e0d314def50c76eed0

[Patch] https://git.kernel.org/stable/c/845322a9c06dd1dcf35b6c4e3af89684297c23cc

[Patch] https://git.kernel.org/stable/c/f3f407ccbe84a34de9be3195d22cdd5969f3fd9f

[Patch] https://git.kernel.org/stable/c/fa74e4f5d0821829545b9f7034a0e577c205c101

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (1)

linux/linux_kernel < 6.1.83

Timeline

Published May 17, 2024

Tracked Since Feb 18, 2026