CVE-2023-53682

MEDIUM

Linux Kernel - Use-After-Free in xgene-hwmon Driver

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: hwmon: (xgene) Fix ioremap and memremap leak Smatch reports: drivers/hwmon/xgene-hwmon.c:757 xgene_hwmon_probe() warn: 'ctx->pcc_comm_addr' from ioremap() not released on line: 757. This is because in drivers/hwmon/xgene-hwmon.c:701 xgene_hwmon_probe(), ioremap and memremap is not released, which may cause a leak. To fix this, ioremap and memremap is modified to devm_ioremap and devm_memremap. [groeck: Fixed formatting and subject]

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/9d482a09acd3d5f61a56aefc125d32c81994707b

Patch

https://git.kernel.org/stable/c/1773185a0a87006c1be78a978d9dd61aa7a33db8

Patch

https://git.kernel.org/stable/c/813cc94c7847ae4a17e9f744fb4dbdf7df6bd732

Scores

CVSS v3 5.5

EPSS 0.0013

EPSS Percentile 3.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (10)

Linux/Linux < 4.9

Linux/Linux 4.9

Linux/Linux 6.1.25 - 6.1.*

Linux/Linux 6.2.12 - 6.2.*

Linux/Linux 6.3

Linux/Linux ed42cfa881e1d8d9603b7cb872199e3c8e0d1b19 - 1773185a0a87006c1be78a978d9dd61aa7a33db8

Linux/Linux ed42cfa881e1d8d9603b7cb872199e3c8e0d1b19 - 813cc94c7847ae4a17e9f744fb4dbdf7df6bd732

Linux/Linux ed42cfa881e1d8d9603b7cb872199e3c8e0d1b19 - 9d482a09acd3d5f61a56aefc125d32c81994707b

linux/linux_kernel 6.3 rc1 (3 CPE variants)

linux/linux_kernel 4.9 - 6.1.25

Published Oct 07, 2025

Tracked Since Feb 18, 2026