PT-2025-53208 · Linux+3 · Linux Kernel+3

Published

2023-04-03

Updated

2026-02-24

CVE-2023-54131

CVSS v2.0

6.0

Medium

Vector

AV:L/AC:H/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak exists in the rt2x00 Wi-Fi driver when handling channel surveys. Specifically, when an rt2x00 device is removed, the associated channel surveys are not freed, leading to a memory leak that can be observed using kmemleak. The issue is related to the improper freeing of memory allocated for channel surveys during device removal. This was tested with a RT3070 based USB wireless adapter.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Missing Release of Resource after Effective Lifetime

Memory Leak

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-772CWE-401

Related Identifiers

BDU:2026-02507

CVE-2023-54131

RHSA-2023:6583

RHSA-2023:7077

SUSE-SU-2026:0263-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0617-1

Affected Products

Centos

Linux Kernel

Rt3070

Red Hat

PT-2025-53208 · Linux+3 · Linux Kernel+3

CVE-2023-54131

Weakness Enumeration

Related Identifiers

Affected Products

References · 980