CVE-2023-53014

MEDIUM5.5

dmaengine: tegra: Fix memory leak in terminate_all()

Published Mar 27, 2025

Modified 2 weeks ago

Details

In the Linux kernel, the following vulnerability has been resolved:

dmaengine: tegra: Fix memory leak in terminate_all()

Terminate vdesc when terminating an ongoing transfer. This will ensure that the vdesc is present in the desc_terminated list The descriptor will be freed later in desc_free_list().

This fixes the memory leaks which can happen when terminating an ongoing transfer.

References

WEB

https://git.kernel.org/stable/c/567128076d554e41609c61b7d447089094ff72c5

WEB

https://git.kernel.org/stable/c/a7a7ee6f5a019ad72852c001abbce50d35e992f2

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2023-53014

CVSS Analysis

CVSS v3.1

5.5

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

UnchangedS:U

Impact

Confidentiality

NoneC:N

Integrity

NoneI:N

Availability

HighA:H

5.5/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Ecosystems

Timeline

PublishedMar 27, 2025

ModifiedMay 11, 2026

CVE-2023-53014 | Mondoo Vulnerability Intelligence