PT-2025-54104 · Linux+3 · Linux Kernel+3

Published

2023-01-18

Updated

2026-02-24

CVE-2023-54275

CVSS v2.0

5.5

Medium

Vector

AV:A/AC:L/Au:S/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A memory leak exists in the ath11k module within the Linux kernel, specifically within the ath11k peer rx frag setup function. The crypto alloc shash() function allocates resources that should be released by crypto free shash(). When ath11k peer find() fails, these resources are not released, resulting in a memory leak.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Missing Release of Resource after Effective Lifetime

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-772

Related Identifiers

BDU:2026-02427

CVE-2023-54275

RHSA-2023:6583

RHSA-2023:7077

SUSE-SU-2026:0263-1

SUSE-SU-2026:0317-1

SUSE-SU-2026:0411-1

SUSE-SU-2026:0617-1

Affected Products

Centos

Linux Kernel

Red Hat

Ath11K

PT-2025-54104 · Linux+3 · Linux Kernel+3

CVE-2023-54275

Weakness Enumeration

Related Identifiers

Affected Products

References · 981