CVE-2023-53050

MEDIUM

Linux Kernel 6.1-6.1.21, 6.2-6.2.8, <6.3 - Use-After-Free in Thunderbolt Margining

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Fix memory leak in margining Memory for the usb4->margining needs to be relased for the upstream port of the router as well, even though the debugfs directory gets released with the router device removal. Fix this.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/f390095bbd131ec2dfb29792d9f6fd0f0656bfc0

Patch

https://git.kernel.org/stable/c/0b357b360e671688f9bf38ff94300515b68bc247

Patch

https://git.kernel.org/stable/c/acec726473822bc6b585961f4ca2a11fa7f28341

Scores

CVSS v3 5.5

EPSS 0.0016

EPSS Percentile 5.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (10)

Linux/Linux < 6.1

Linux/Linux 6.1

Linux/Linux 6.1.22 - 6.1.*

Linux/Linux 6.2.9 - 6.2.*

Linux/Linux 6.3

Linux/Linux d0f1e0c2a6990922818d6616a48d3d92bb7ddac1 - 0b357b360e671688f9bf38ff94300515b68bc247

Linux/Linux d0f1e0c2a6990922818d6616a48d3d92bb7ddac1 - acec726473822bc6b585961f4ca2a11fa7f28341

Linux/Linux d0f1e0c2a6990922818d6616a48d3d92bb7ddac1 - f390095bbd131ec2dfb29792d9f6fd0f0656bfc0

linux/linux_kernel 6.3 rc1 (3 CPE variants)

linux/linux_kernel 6.1 - 6.1.22

Published May 02, 2025

Tracked Since Feb 18, 2026