Security tracker / CVE-2023-53594

CVE-2023-53594

driver core: fix resource leak in device_add()

References

• Debian security tracker
• cve.org

Notes

 carnil> Introduced in cebf8fd16900 ("driver core: fix race between creating/querying
 carnil> glue dir and its cleanup"). Vulnerable versions: 3.10.105 3.12.70 4.4.40 4.8.16
 carnil> 4.9.

Bugs

Status

Branch	Status
upstream	released (6.3-rc1) [6977b1a5d67097eaa4d02b0c126c04cc6e8917c0]
6.18-upstream-stable	N/A "Fixed before branching point"
6.17-upstream-stable	N/A "Fixed before branching point"
6.16-upstream-stable	N/A "Fixed before branching point"
6.12-upstream-stable	N/A "Fixed before branching point"
6.6-upstream-stable	N/A "Fixed before branching point"
6.1-upstream-stable	released (6.1.16) [d1dbff10c6cd3b43457f3efd3c9c4950009635bf]
5.10-upstream-stable	needed
sid	released (6.1.20-1)
6.12-trixie-security	N/A "Fixed before branching point"
6.1-bookworm-security	N/A "Fixed before branching point"
5.10-bullseye-security	needed