CVE-2023-54017

CVSS v2.0

5.5

Medium

Vector

AV:A/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak exists in the powerpc/pseries architecture within the ibmebus bus init() function of the Linux kernel. If the device register() function returns an error during the initialization process, the name of the kobject allocated in the dev set name() function, which is called within device add(), is not freed. This occurs because put device() is not called to decrement the reference count set in device initialize() when device add() fails, preventing the kobject cleanup and subsequent memory release.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-911

Related Identifiers

BDU:2026-04188

CVE-2023-54017

SUSE-SU-2026:0263-1

SUSE-SU-2026:0278-1

SUSE-SU-2026:0281-1

SUSE-SU-2026:0293-1

SUSE-SU-2026:0315-1

SUSE-SU-2026:0316-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:20477-1

SUSE-SU-2026:20498-1

SUSE-SU-2026:20845-1

SUSE-SU-2026:20876-1

Affected Products

Linux Kernel

CVE-2023-54017

Weakness Enumeration

Related Identifiers

Affected Products

References · 2172