PT-2025-49476 · Linux+2 · Linux Kernel+2

Publicado

2025-12-08

·

Atualizado

2026-02-24

·

CVE-2023-53746

Nenhuma

Não há classificações de severidade ou métricas disponíveis. Quando houver, atualizaremos as informações correspondentes na página.
Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)
Description A memory leak exists in the vfio ap device driver within the Linux kernel. The device release callback function incorrectly attempts to free memory associated with a vfio matrix dev object. Specifically, the dev get drvdata(device *dev) function does not retrieve the correct pointer to the object, resulting in the memory not being freed. The kfree function handles the NULL pointer gracefully, preventing a crash, but leaving the memory allocated. The affected component is the vfio ap device driver.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Identificadores relacionados

CVE-2023-53746
RHSA-2023:6583
RHSA-2024:3138
SUSE-SU-2026:0263-1
SUSE-SU-2026:0316-1
SUSE-SU-2026:0317-1
SUSE-SU-2026:0411-1
SUSE-SU-2026:0617-1

Produtos afetados

Centos
Linux Kernel
Red Hat