CVE-2023-53054

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, related to a devres leak in the hw enable function upon suspend and resume. This issue occurs when the platform goes to low power, causing the PM suspend/resume routines to call dwc2 lowlevel hw enable and add a new devres each time. Additionally, a reference count issue with regulators is addressed, where regulator bulk enable is called upon each PM cycle, but regulator bulk disable is never called, causing the reference count to constantly increase. The issue can be traced by enabling devres logging and observing the "ADD" entries upon each low power cycle.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for the devres leak and the regulator reference count issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.