Memory Leak Vulnerability in Linux Kernel for USB Device Management
CVE-2023-53416

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2025

What is CVE-2023-53416?

A memory leak vulnerability exists in the Linux kernel's USB management functionality, specifically related to the isp1362 driver. When using the debugfs_lookup() function, the expected cleanup logic is not triggered unless dput() is properly called, potentially leading to gradual memory depletion over time. To address this issue, developers are advised to utilize the debugfs_lookup_and_remove() function, which streamlines the process by incorporating both lookup and cleanup, thereby preventing memory leaks and enhancing overall system stability.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 9d537c35e48feba9d450acca0ff14a55ce1ec450

References

https://git.kernel.org/stable/c/fb284bee1e213c94be9131d1a...

https://git.kernel.org/stable/c/b0a8195a84a725ca7936c213b...

https://git.kernel.org/stable/c/9d537c35e48feba9d450acca0...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 18, 2025
Vulnerability Reserved
Sep 17, 2025