Memory Leak Vulnerability in Linux Kernel's iwlwifi Wi-Fi Driver
CVE-2023-53422

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 18 September 2025

What is CVE-2023-53422?

A memory leak vulnerability exists in the iwlwifi Wi-Fi driver within the Linux kernel. When accessing the fw_info file, the driver fails to adequately free resources upon returning NULL, which can lead to memory waste. This issue arises due to improper management of the status tracking object, particularly when the end of data is reached. Addressing this issue is critical to ensure optimal resource usage and system stability.

Affected Version(s)

Linux 36dfe9ac6e8b8fc2e25733d003a867a40db791da < 89496d6cff297c88fe0286a440c380ceb172da2b

Linux 36dfe9ac6e8b8fc2e25733d003a867a40db791da

Linux 36dfe9ac6e8b8fc2e25733d003a867a40db791da < 37f64bc8e001f216566d17ef9fd5608c762ebcd4

References

https://git.kernel.org/stable/c/89496d6cff297c88fe0286a44...

https://git.kernel.org/stable/c/e302e9ca14a86a80eadfb24a3...

https://git.kernel.org/stable/c/37f64bc8e001f216566d17ef9...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 18, 2025
Vulnerability Reserved
Sep 17, 2025