CVE-2023-53460

MEDIUM

Linux Kernel 5.2-6.3.3 - Use-After-Free in rtw_usb_probe

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix memory leak in rtw_usb_probe() drivers/net/wireless/realtek/rtw88/usb.c:876 rtw_usb_probe() warn: 'hw' from ieee80211_alloc_hw() not released on lines: 811 Fix this by modifying return to a goto statement.

References (2)

Core 2

Core References

Patch

https://git.kernel.org/stable/c/6cc92379b80af005e1f49ef6ef790cddc58cf0da

Patch

https://git.kernel.org/stable/c/48181d285623198c33bb9698992502687b258efa

Scores

CVSS v3 5.5

EPSS 0.0013

EPSS Percentile 2.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (7)

Linux/Linux < 5.2

Linux/Linux 5.2

Linux/Linux 6.3.4 - 6.3.*

Linux/Linux 6.4

Linux/Linux e3037485c68ec1a299ff41160d8fedbd4abc29b9 - 48181d285623198c33bb9698992502687b258efa

Linux/Linux e3037485c68ec1a299ff41160d8fedbd4abc29b9 - 6cc92379b80af005e1f49ef6ef790cddc58cf0da

linux/linux_kernel 5.2 - 6.3.4

Published Oct 01, 2025

Tracked Since Feb 18, 2026