CVE-2023-53518

MEDIUM

Linux Kernel - Info Disclosure

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Fix leak in devfreq_dev_release() srcu_init_notifier_head() allocates resources that need to be released with a srcu_cleanup_notifier_head() call. Reported by kmemleak.

References (9)

[Patch] https://git.kernel.org/stable/c/111bafa210ae546bee7644be730c42df9c35b66e

[Patch] https://git.kernel.org/stable/c/1640e9c72173911ad0fddb05012c01eafe082c4e

[Patch] https://git.kernel.org/stable/c/29811f4b8255d4238cf326f3bb7129784766beab

[Patch] https://git.kernel.org/stable/c/3354c401c68d70567d1ef25d12f4e22a7813a3c6

[Patch] https://git.kernel.org/stable/c/5693d077595de721f9ddbf9d37f40e5409707dfe

[Patch] https://git.kernel.org/stable/c/64e6e0dc2d578c0a9e31cb4edd719f0a3ed98f6d

[Patch] https://git.kernel.org/stable/c/7462483446cb9986568ad7adae746ce5f18d2968

[Patch] https://git.kernel.org/stable/c/8918025feb2f5f7c73f2495c158f22997e25cb02

[Patch] https://git.kernel.org/stable/c/ab192e5e5d3b48415909a8408acfd007a607bcc0

Scores

CVSS v3 5.5

EPSS 0.0001

EPSS Percentile 2.5%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-401

Status published

Affected Products (1)

linux/linux_kernel < 4.14.326

Timeline

Published Oct 01, 2025

Tracked Since Feb 18, 2026