Home

Description

In the Linux kernel, the following vulnerability has been resolved: pcmcia: rsrc_nonstatic: Fix memory leak in nonstatic_release_resource_db() When nonstatic_release_resource_db() frees all resources associated with an PCMCIA socket, it forgets to free socket_data too, causing a memory leak observable with kmemleak: unreferenced object 0xc28d1000 (size 64): comm "systemd-udevd", pid 297, jiffies 4294898478 (age 194.484s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 f0 85 0e c3 00 00 00 00 ................ 00 00 00 00 0c 10 8d c2 00 00 00 00 00 00 00 00 ................ backtrace: [<ffda4245>] __kmem_cache_alloc_node+0x2d7/0x4a0 [<7e51f0c8>] kmalloc_trace+0x31/0xa4 [<d52b4ca0>] nonstatic_init+0x24/0x1a4 [pcmcia_rsrc] [<a2f13e08>] pcmcia_register_socket+0x200/0x35c [pcmcia_core] [<a728be1b>] yenta_probe+0x4d8/0xa70 [yenta_socket] [<c48fac39>] pci_device_probe+0x99/0x194 [<84b7c690>] really_probe+0x181/0x45c [<8060fe6e>] __driver_probe_device+0x75/0x1f4 [<b9b76f43>] driver_probe_device+0x28/0xac [<648b766f>] __driver_attach+0xeb/0x1e4 [<6e9659eb>] bus_for_each_dev+0x61/0xb4 [<25a669f3>] driver_attach+0x1e/0x28 [<d8671d6b>] bus_add_driver+0x102/0x20c [<df0d323c>] driver_register+0x5b/0x120 [<942cd8a4>] __pci_register_driver+0x44/0x4c [<e536027e>] __UNIQUE_ID___addressable_cleanup_module188+0x1c/0xfffff000 [iTCO_vendor_support] Fix this by freeing socket_data too. Tested on a Acer Travelmate 4002WLMi by manually binding/unbinding the yenta_cardbus driver (yenta_socket).

PUBLISHED Reserved 2025-12-24 | Published 2025-12-24 | Updated 2025-12-24 | Assigner Linux

Product status

Default status
unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before bde0b6da7bd893c37afaee3555cc3ac3be582313
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 2d45e2be0be35a3d66863563ed2591ee18a6897e
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 22100df1d57f04cf2370d5347b9ef547f481deea
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 04bb8af40a7729c398ed4caea7e66cedd2881719
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 97fd1c8e9c5aa833aab7e836760bc13103afa892
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before e8a80cf06b4bb0396212289d651b384c949f09d0
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before fd53a1f28faba2c4806c055e706a7721006291c1
affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before c85fd9422fe0f5d667305efb27f56d09eab120b0
affected

Default status
affected

4.14.324 (semver)
unaffected

4.19.293 (semver)
unaffected

5.4.255 (semver)
unaffected

5.10.192 (semver)
unaffected

5.15.128 (semver)
unaffected

6.1.47 (semver)
unaffected

6.4.12 (semver)
unaffected

6.5 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/bde0b6da7bd893c37afaee3555cc3ac3be582313

git.kernel.org/...c/2d45e2be0be35a3d66863563ed2591ee18a6897e

git.kernel.org/...c/22100df1d57f04cf2370d5347b9ef547f481deea

git.kernel.org/...c/04bb8af40a7729c398ed4caea7e66cedd2881719

git.kernel.org/...c/97fd1c8e9c5aa833aab7e836760bc13103afa892

git.kernel.org/...c/e8a80cf06b4bb0396212289d651b384c949f09d0

git.kernel.org/...c/fd53a1f28faba2c4806c055e706a7721006291c1

git.kernel.org/...c/c85fd9422fe0f5d667305efb27f56d09eab120b0

cve.org (CVE-2023-54115)

nvd.nist.gov (CVE-2023-54115)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.