Memory Leak Vulnerability in Linux Kernel USB Gadget
CVE-2023-53407

5.5MEDIUM

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2025

What is CVE-2023-53407?

A memory leak vulnerability exists in the USB gadget implementation of the Linux kernel, specifically affecting the pxa27x_udc driver. When the debugfs_lookup() function is called, it is crucial to invoke dput() on its result to prevent memory from leaking over time. Developers are advised to utilize debugfs_lookup_and_remove(), which simplifies the process by managing the necessary calls internally, thus mitigating the risk of memory leaks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 8efd88f946017b69af67931a133b6dce92c27fd0 < 8da78a60f3323ce7aac589d49fb82f71a04bc835

Linux 8efd88f946017b69af67931a133b6dce92c27fd0

Linux 8efd88f946017b69af67931a133b6dce92c27fd0 < 67c931a3f2f061bf457995fd21fff114325e0c30

References

https://git.kernel.org/stable/c/8da78a60f3323ce7aac589d49...

https://git.kernel.org/stable/c/b14d188d0d0b86e2180525aef...

https://git.kernel.org/stable/c/67c931a3f2f061bf457995fd2...

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 18, 2025
Vulnerability Reserved
Sep 17, 2025

JSON

Linux

What is CVE-2023-53407?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.