CVE-2023-53263

HIGH

Linux Kernel 6.0-6.1.47 6.4.12-6.4.* 6.5 - Use-After-Free in Nouveau Connector Error Handling

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/disp: fix use-after-free in error handling of nouveau_connector_create We can't simply free the connector after calling drm_connector_init on it. We need to clean up the drm side first. It might not fix all regressions from commit 2b5d1c29f6c4 ("drm/nouveau/disp: PIOR DP uses GPIO for HPD, not PMGR AUX interrupts"), but at least it fixes a memory corruption in error handling related to that commit.

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/3f27451c9f29d5ed00232968680c7838a44dcac7

Patch

https://git.kernel.org/stable/c/872feeecd08c81d212a52211d212897b8a857544

Patch

https://git.kernel.org/stable/c/1b254b791d7b7dea6e8adc887fbbd51746d8bb27

Scores

CVSS v3 7.8

EPSS 0.0015

EPSS Percentile 4.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-416

Status published

Products (10)

Linux/Linux < 6.0

Linux/Linux 6.0

Linux/Linux 6.1.47 - 6.1.*

Linux/Linux 6.4.12 - 6.4.*

Linux/Linux 6.5

Linux/Linux 95983aea80038539ebc70e41e73e9bb4eabd1a92 - 1b254b791d7b7dea6e8adc887fbbd51746d8bb27

Linux/Linux 95983aea80038539ebc70e41e73e9bb4eabd1a92 - 3f27451c9f29d5ed00232968680c7838a44dcac7

Linux/Linux 95983aea80038539ebc70e41e73e9bb4eabd1a92 - 872feeecd08c81d212a52211d212897b8a857544

linux/linux_kernel 6.5 rc1 (6 CPE variants)

linux/linux_kernel 6.0 - 6.1.47

Published Sep 16, 2025

Tracked Since Feb 18, 2026