Memory Leak Vulnerability in Linux Kernel Affecting ARM64
CVE-2023-53266

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 16 September 2025

What is CVE-2023-53266?

A memory leak vulnerability exists in the Linux kernel for ARM64 architectures, which could potentially allow for the accumulation of unreleased memory resources. This occurs when checks for the SMCCC version and conduit fail, leading to a situation where allocated 'ffh_ctxt' memory is not freed if an error condition is triggered. This issue is resolved by ensuring that memory allocation is performed only after these checks, thus preventing leaks and ensuring better resource management.

Affected Version(s)

Linux 1d280ce099db396e092cac1aa9bf2ea8beee6d76 < 7521da2eb42d65f89f511b7912d3757cf3d9168a

Linux 1d280ce099db396e092cac1aa9bf2ea8beee6d76 < 1b561d3949f8478c5403c9752b5533211a757226

Linux 6.2

References

https://git.kernel.org/stable/c/7521da2eb42d65f89f511b791...

https://git.kernel.org/stable/c/1b561d3949f8478c5403c9752...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 16, 2025
Vulnerability Reserved
Sep 16, 2025