CVE-2023-53567

CVSS v2.0

6.0

Medium

Vector

AV:L/AC:H/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel’s SPI QUP component where cleanup operations are skipped during the removal process if an error occurs. Specifically, the issue arises from returning early within a platform driver’s remove callback, preventing the release of DMA resources. This results in a permanent resource leak. The issue occurs when hardware disabling is skipped if waking the device fails.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-401

Related Identifiers

BDU:2026-04417

CVE-2023-53567

OESA-2025-2553

SUSE-SU-2025:4111-1

SUSE-SU-2025:4139-1

SUSE-SU-2025:4149-1

SUSE-SU-2025:4320-1

Affected Products

Linux Kernel

Suse

CVE-2023-53567

Weakness Enumeration

Related Identifiers

Affected Products

References · 487