CVE-2023-53814

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw in PCI resource handling. Specifically, the issue relates to incorrectly dropping valid root bus resources when the .end member is zero during resource coalescing. This can lead to false positives when checking for invalid resources, causing valid resources to be skipped and potentially resulting in a memory leak. The issue occurs when coalescing two resources for a contiguous aperture, where the second resource is enlarged, and the first is marked invalid by clearing flags, start, and end members. The fix ensures that resources are only skipped if all of the flags, start, and end members are zero.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.