CVE-2023-53687

MEDIUM

Linux Kernel 3.3-4.14.321 - Use-After-Free in s3c24xx_serial_getclk()

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: tty: serial: samsung_tty: Fix a memory leak in s3c24xx_serial_getclk() when iterating clk When the best clk is searched, we iterate over all possible clk. If we find a better match, the previous one, if any, needs to be freed. If a better match has already been found, we still need to free the new one, otherwise it leaks.

References (8)

Core 8

Core References

Patch

https://git.kernel.org/stable/c/933e5b2998bc3a527d15efbf1e97c9e63297aa3c

Patch

https://git.kernel.org/stable/c/01dd8a43a84616c830782166ba3cceb01ad95363

Patch

https://git.kernel.org/stable/c/46574e5a0a2aee41e6ebb979cfe1dbaea8693e16

Patch

https://git.kernel.org/stable/c/1962717c4649e026a4252fe6625175affd28a593

Patch

https://git.kernel.org/stable/c/9dd8091959bc41fee51d0827276a2b982e84adf0

Patch

https://git.kernel.org/stable/c/f0bf102ef9b05d7294bd8d506755465f6867d944

Patch

https://git.kernel.org/stable/c/1f426293fef1c13742b2a685bf7e363f51f6ee03

Patch

https://git.kernel.org/stable/c/832e231cff476102e8204a9e7bddfe5c6154a375

Scores

CVSS v3 5.5

EPSS 0.0013

EPSS Percentile 3.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-401

Status published

Products (19)

Linux/Linux < 3.3

Linux/Linux 3.3

Linux/Linux 4.14.322 - 4.14.*

Linux/Linux 4.19.291 - 4.19.*

Linux/Linux 5.10.188 - 5.10.*

Linux/Linux 5.15.121 - 5.15.*

Linux/Linux 5.4.251 - 5.4.*

Linux/Linux 5f5a7a5578c5885201cf9c85856f023fe8b81765 - 01dd8a43a84616c830782166ba3cceb01ad95363

Linux/Linux 5f5a7a5578c5885201cf9c85856f023fe8b81765 - 1962717c4649e026a4252fe6625175affd28a593

Linux/Linux 5f5a7a5578c5885201cf9c85856f023fe8b81765 - 1f426293fef1c13742b2a685bf7e363f51f6ee03

... and 9 more

Published Oct 07, 2025

Tracked Since Feb 18, 2026