Home

Description

In the Linux kernel, the following vulnerability has been resolved: s390/vfio-ap: fix memory leak in vfio_ap device driver The device release callback function invoked to release the matrix device uses the dev_get_drvdata(device *dev) function to retrieve the pointer to the vfio_matrix_dev object in order to free its storage. The problem is, this object is not stored as drvdata with the device; since the kfree function will accept a NULL pointer, the memory for the vfio_matrix_dev object is never freed. Since the device being released is contained within the vfio_matrix_dev object, the container_of macro will be used to retrieve its pointer.

PUBLISHED Reserved 2025-12-08 | Published 2025-12-08 | Updated 2025-12-08 | Assigner Linux

Product status

Default status
unaffected

1fde573413b549d52183382e639c1d6ce88f5959 (git) before 5195de1d5f66b276683240a896783f7f43c4f664
affected

1fde573413b549d52183382e639c1d6ce88f5959 (git) before ee17dea3072dec0bc34399a32fa884e26342e4ea
affected

1fde573413b549d52183382e639c1d6ce88f5959 (git) before aa2bff25e9bb10c935c7ffe3d5f5975bdccb1749
affected

1fde573413b549d52183382e639c1d6ce88f5959 (git) before 6a40fda14b4be3e38f03cc42ffd4efbc64fb3e67
affected

1fde573413b549d52183382e639c1d6ce88f5959 (git) before 7b6a02f5bf15931464c79dfd487c57f76aae3496
affected

1fde573413b549d52183382e639c1d6ce88f5959 (git) before 8f8cf767589f2131ae5d40f3758429095c701c84
affected

Default status
affected

4.20
affected

Any version before 4.20
unaffected

5.4.240 (semver)
unaffected

5.10.177 (semver)
unaffected

5.15.106 (semver)
unaffected

6.1.23 (semver)
unaffected

6.2.10 (semver)
unaffected

6.3 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/5195de1d5f66b276683240a896783f7f43c4f664

git.kernel.org/...c/ee17dea3072dec0bc34399a32fa884e26342e4ea

git.kernel.org/...c/aa2bff25e9bb10c935c7ffe3d5f5975bdccb1749

git.kernel.org/...c/6a40fda14b4be3e38f03cc42ffd4efbc64fb3e67

git.kernel.org/...c/7b6a02f5bf15931464c79dfd487c57f76aae3496

git.kernel.org/...c/8f8cf767589f2131ae5d40f3758429095c701c84

cve.org (CVE-2023-53746)

nvd.nist.gov (CVE-2023-53746)

Download JSON