Memory Leak in Linux Kernel Affects UBI Component
CVE-2023-53271

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 September 2025

What is CVE-2023-53271?

The Linux kernel's UBI component had a memory leak issue where unreferenced objects reported by kmemleak were not handled properly. The problem stemmed from a mismatch between create and destroy interfaces during volume resizing operations. Specifically, an object created by ubi_eba_create_table() was incorrectly destroyed using kfree(), preventing associated entries from being freed. The resolution involved replacing kfree(new_eba_tbl) with ubi_eba_destroy_table(new_eba_tbl) to ensure proper memory management and avoid leaks.

Affected Version(s)

Linux 799dca34ac543485f581bd8464ec9b1c4f0f852a < 09780a44093b53f9cbca76246af2e4ff0884e512

Linux 799dca34ac543485f581bd8464ec9b1c4f0f852a < 26ec2d66aecab8ff997b912c20247fedba4f5740

Linux 799dca34ac543485f581bd8464ec9b1c4f0f852a < 07b60f7452d2fa731737552937cb81821919f874

References

https://git.kernel.org/stable/c/09780a44093b53f9cbca76246...
https://git.kernel.org/stable/c/26ec2d66aecab8ff997b912c2...
https://git.kernel.org/stable/c/07b60f7452d2fa73173755293...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2023-53271 : Memory Leak in Linux Kernel Affects UBI Component