Use-After-Free Vulnerability in Linux Kernel Affecting Nouveau Connector Management
CVE-2023-53263

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 September 2025

What is CVE-2023-53263?

A use-after-free vulnerability was identified in the handling of error situations related to the Nouveau connector within the Linux kernel. This issue arises during the cleanup process of the drm_connector_init function, where prematurely freeing memory allocated for the connector can lead to potential memory corruption. Although this fix addresses specific error handling scenarios, it may not resolve all related regressions stemming from previous commits that altered GPIO handling. Proper mitigation is essential to ensure system stability and security.

Affected Version(s)

Linux 95983aea80038539ebc70e41e73e9bb4eabd1a92 < 3f27451c9f29d5ed00232968680c7838a44dcac7

Linux 95983aea80038539ebc70e41e73e9bb4eabd1a92 < 872feeecd08c81d212a52211d212897b8a857544

Linux 95983aea80038539ebc70e41e73e9bb4eabd1a92 < 1b254b791d7b7dea6e8adc887fbbd51746d8bb27

References

https://git.kernel.org/stable/c/3f27451c9f29d5ed002329686...

https://git.kernel.org/stable/c/872feeecd08c81d212a52211d...

https://git.kernel.org/stable/c/1b254b791d7b7dea6e8adc887...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 16, 2025
Vulnerability Reserved
Sep 16, 2025