Home

Description

In the Linux kernel, the following vulnerability has been resolved: mmc: sunplus: fix return value check of mmc_add_host() mmc_add_host() may return error, if we ignore its return value, 1. the memory allocated in mmc_alloc_host() will be leaked 2. null-ptr-deref will happen when calling mmc_remove_host() in remove function spmmc_drv_remove() because deleting not added device. Fix this by checking the return value of mmc_add_host(). Moreover, I fixed the error handling path of spmmc_drv_probe() to clean up.

PUBLISHED Reserved 2025-12-30 | Published 2025-12-30 | Updated 2025-12-30 | Assigner Linux

Product status

Default status
unaffected

4e268fed8b1861616af28f9cfb4eed8ca5d7af6c (git) before 741a951f41929f39cae70c66d86d0754d3129d0a
affected

4e268fed8b1861616af28f9cfb4eed8ca5d7af6c (git) before dce6d8f985fa1ef5c2af47f4f86ea65511b78656
affected

Default status
affected

6.2
affected

Any version before 6.2
unaffected

6.4.12 (semver)
unaffected

6.5 (original_commit_for_fix)
unaffected

References

git.kernel.org/...c/741a951f41929f39cae70c66d86d0754d3129d0a

git.kernel.org/...c/dce6d8f985fa1ef5c2af47f4f86ea65511b78656

cve.org (CVE-2023-54204)

nvd.nist.gov (CVE-2023-54204)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.