CVE-2023-53196
Published: September 16, 2025Last modified: September 16, 2025
Description
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: qcom: Fix potential memory leak Function dwc3_qcom_probe() allocates memory for resource structure which is pointed by parent_res pointer. This memory is not freed. This leads to memory leak. Use stack memory to prevent memory leak. Found by Linux Verification Center (linuxtesting.org) with SVACE.
Severity score breakdown
| Parameter | Value |
|---|---|
| Base score | 5.5 |
| Attack Vector | LOCAL |
| Attack complexity | LOW |
| Privileges required | LOW |
| User interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality | NONE |
| Integrity impact | NONE |
| Availability impact | HIGH |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Status
| Product | Release | Package | Status |
|---|---|---|---|
| Alpaquita Linux | 23 LTS | linux-lts | Fixed (6.1.42-r0) |
| 25 LTS | linux-lts | Not affected (6.6.89-r0) | |
| Stream | linux-lts | Fixed (6.6.58-r0) |
References
- https://git.kernel.org/stable/c/097fb3ee710d4de83b8d4f5589e8ee13e0f0541e
- https://git.kernel.org/stable/c/134a7d4642f11daed6bbc378f930a54dd0322291
- https://git.kernel.org/stable/c/648a163cff21ea355c8765e882ba8bf66a870a3e
- https://git.kernel.org/stable/c/74f8606ddfa450d2255b4e61472a7632def1e8c4
- https://git.kernel.org/stable/c/b626cd5e4a87a281629e0c2b07519990077c0fbe
- https://git.kernel.org/stable/c/c3b322b84ab5dda7eaca9ded763628b7467734f4