Resource Leak Vulnerability in Stratix 10 Services for Linux Kernel
CVE-2023-53255

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 15 September 2025

What is CVE-2023-53255?

A vulnerability has been identified in the Linux kernel's Stratix 10 services where a potential resource leak can occur within the svc_create_memory_pool() function. This function is invoked during the probing of the Stratix 10 driver, but it lacks proper management of memory resources due to the absence of a corresponding memunmap() call. To mitigate this issue, the implementation can be adjusted to use devm_memremap(), ensuring that resources are efficiently managed and preventing potential leaks.

Affected Version(s)

Linux 7ca5ce896524f5292e610b27d168269e5ab74951

Linux 7ca5ce896524f5292e610b27d168269e5ab74951 < 974ac045a05ad12a0b4578fb303f00dcc22f3aba

References

https://git.kernel.org/stable/c/e3373e6b6c79aff698442b00d...

https://git.kernel.org/stable/c/c04ed61ebf01968d7699b1216...

https://git.kernel.org/stable/c/974ac045a05ad12a0b4578fb3...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 15, 2025
Vulnerability Reserved
Sep 15, 2025