Linux · Linux Kernel · CVE-2023-52679
**Name of the Vulnerable Software and Affected Versions**
Linux kernel (affected versions not specified)
**Description**
The issue is related to a double free error in the `of parse phandle with args map` function. This function has an inner loop that iterates through map entries and calls `of node put(new)` to free the reference acquired by the previous iteration. The problem arises from the assumption that the value of `new` is NULL on the first iteration of the inner loop. To fix this, the code sets `new` to NULL after its value is assigned to `cur` in all iterations of the outer loop. The unittest has been extended to detect the double free and an additional test case has been added to trigger this path. The vulnerability may allow an attacker to cause a denial of service.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.