PT-2025-54015 · Linux · Linux Kernel

Published

2025-12-30

Updated

2026-02-24

CVE-2023-54186

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the USB Type-C DisplayPort alternative mode functionality. Specifically, a negative indexing issue exists in the pin assignment show function when no compatible pin assignments are found. This can lead to a use-after-free condition, as indicated by a Kernel Address Sanitizer (KASAN) report. The issue occurs when get current pin assignments returns 0, resulting in an out-of-bounds access on the buf array within the pin assignment show function.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2023-54186

OESA-2026-1306

RHSA-2024:2394

RHSA-2024:3138

SUSE-SU-2026:0263-1

SUSE-SU-2026:0316-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0617-1

Affected Products

Linux Kernel

PT-2025-54015 · Linux · Linux Kernel

CVE-2023-54186

Related Identifiers

Affected Products

References · 1125