| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <2025091641-CVE-2023-53308-51a1@gregkh> Date: Tue, 16 Sep 2025 18:11:53 +0200 From: Greg Kroah-Hartman <gregkh@...uxfoundation.org> To: linux-cve-announce@...r.kernel.org Cc: Greg Kroah-Hartman <gregkh@...nel.org> Subject: CVE-2023-53308: net: fec: Better handle pm_runtime_get() failing in .remove() From: Greg Kroah-Hartman <gregkh@...nel.org> Description =========== In the Linux kernel, the following vulnerability has been resolved: net: fec: Better handle pm_runtime_get() failing in .remove() In the (unlikely) event that pm_runtime_get() (disguised as pm_runtime_resume_and_get()) fails, the remove callback returned an error early. The problem with this is that the driver core ignores the error value and continues removing the device. This results in a resource leak. Worse the devm allocated resources are freed and so if a callback of the driver is called later the register mapping is already gone which probably results in a crash. The Linux kernel CVE team has assigned CVE-2023-53308 to this issue. Affected and fixed versions =========================== Issue introduced in 4.14.158 with commit 982d424239d7fae74938557428d45c717567ea9b and fixed in 4.14.316 with commit d52a0cca591e899d4e5c8ab19e067b4c6b7d104f Issue introduced in 4.19.88 with commit 04748841f7a02ec6ff07fadfc5d1f8e24e61946d and fixed in 4.19.284 with commit be85912c36ddca3e8b2eef1b5392cd8db6bdb730 Issue introduced in 5.4 with commit a31eda65ba210741b598044d045480494d0ed52a and fixed in 5.4.244 with commit b22b514209ff8c4287abb853399890ab97e1b5ca Issue introduced in 5.4 with commit a31eda65ba210741b598044d045480494d0ed52a and fixed in 5.10.181 with commit 83996d317b1deddc85006376082e8886f55aa709 Issue introduced in 5.4 with commit a31eda65ba210741b598044d045480494d0ed52a and fixed in 5.15.113 with commit c1bc2870f14e526a01897e14c747a0a0ca125231 Issue introduced in 5.4 with commit a31eda65ba210741b598044d045480494d0ed52a and fixed in 6.1.30 with commit 9407454a9b18bbeff216e8ecde87ffb2171e9ccf Issue introduced in 5.4 with commit a31eda65ba210741b598044d045480494d0ed52a and fixed in 6.3.4 with commit e02d8d5b1602689b98d9b91550a11b9b57baedbe Issue introduced in 5.4 with commit a31eda65ba210741b598044d045480494d0ed52a and fixed in 6.4 with commit f816b9829b19394d318e01953aa3b2721bca040d Issue introduced in 4.9.206 with commit d961a58dcc9778948502847303d29d018a49710a Issue introduced in 5.3.15 with commit d9c7531fb4708eb3f22cccdb0b7371834d37555a Please see https://www.kernel.org for a full list of currently supported kernel versions by the kernel community. Unaffected versions might change over time as fixes are backported to older supported kernel versions. The official CVE entry at https://cve.org/CVERecord/?id=CVE-2023-53308 will be updated if fixes are backported, please check that for the most up to date information about this issue. Affected files ============== The file(s) affected by this issue are: drivers/net/ethernet/freescale/fec_main.c Mitigation ========== The Linux kernel CVE team recommends that you update to the latest stable kernel version for this, and many other bugfixes. Individual changes are never tested alone, but rather are part of a larger kernel release. Cherry-picking individual commits is not recommended or supported by the Linux kernel community at all. If however, updating to the latest release is impossible, the individual changes to resolve this issue can be found at these commits: https://git.kernel.org/stable/c/d52a0cca591e899d4e5c8ab19e067b4c6b7d104f https://git.kernel.org/stable/c/be85912c36ddca3e8b2eef1b5392cd8db6bdb730 https://git.kernel.org/stable/c/b22b514209ff8c4287abb853399890ab97e1b5ca https://git.kernel.org/stable/c/83996d317b1deddc85006376082e8886f55aa709 https://git.kernel.org/stable/c/c1bc2870f14e526a01897e14c747a0a0ca125231 https://git.kernel.org/stable/c/9407454a9b18bbeff216e8ecde87ffb2171e9ccf https://git.kernel.org/stable/c/e02d8d5b1602689b98d9b91550a11b9b57baedbe https://git.kernel.org/stable/c/f816b9829b19394d318e01953aa3b2721bca040d
Powered by blists - more mailing lists