CVE-2023-53544

HIGH

Linux Kernel 2.6.33-4.14.308, 6.1.16-6.1., 6.2.3- - Use-After-Free in CPU Frequency Driver

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: cpufreq: davinci: Fix clk use after free The remove function first frees the clks and only then calls cpufreq_unregister_driver(). If one of the cpufreq callbacks is called just before cpufreq_unregister_driver() is run, the freed clks might be used.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/66b3bbe6fbd8dd410868e5b53ac3944a934b9310

Patch

https://git.kernel.org/stable/c/a5f024d0e6f91e05c816ad4ee8837173369dd5cb

Patch

https://git.kernel.org/stable/c/ab05ae4ab831f64bbc427592c86f599ed9c4324f

Patch

https://git.kernel.org/stable/c/5d8f384a9b4fc50f6a18405f1c08e5a87a77b5b3

Scores

CVSS v3 7.8

EPSS 0.0015

EPSS Percentile 4.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-416

Status published

Products (11)

Linux/Linux < 2.6.33

Linux/Linux 2.6.33

Linux/Linux 4.14.308 - 4.14.*

Linux/Linux 6.1.16 - 6.1.*

Linux/Linux 6.2.3 - 6.2.*

Linux/Linux 6.3

Linux/Linux 6601b8030de3e9c29930684eeac15302a59f991a - 5d8f384a9b4fc50f6a18405f1c08e5a87a77b5b3

Linux/Linux 6601b8030de3e9c29930684eeac15302a59f991a - 66b3bbe6fbd8dd410868e5b53ac3944a934b9310

Linux/Linux 6601b8030de3e9c29930684eeac15302a59f991a - a5f024d0e6f91e05c816ad4ee8837173369dd5cb

Linux/Linux 6601b8030de3e9c29930684eeac15302a59f991a - ab05ae4ab831f64bbc427592c86f599ed9c4324f

... and 1 more

Published Oct 04, 2025

Tracked Since Feb 18, 2026

CVE-2023-53544

Linux Kernel 2.6.33-4.14.308, 6.1.16-6.1.*, 6.2.3-* - Use-After-Free in CPU Frequency Driver

Description

References (4)

Scores

Details

Linux Kernel 2.6.33-4.14.308, 6.1.16-6.1., 6.2.3- - Use-After-Free in CPU Frequency Driver