Memory Leak in Mediatek Clock Driver of Linux Kernel
CVE-2023-53424

5.5MEDIUM

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2025

What is CVE-2023-53424?

A memory leak vulnerability has been discovered in the Mediatek clock driver within the Linux kernel, specifically in the mtk_clk_simple_probe() function. If an error occurs and clk_data is not available, the memory allocated through of_iomap() is not correctly released, leading to potential memory exhaustion. The issue has been identified and addressed by integrating a fix to ensure that the allocated memory is appropriately freed, thereby preventing undesired memory leaks. Users are urged to ensure they are using the latest kernel versions with the necessary patches applied to protect their systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux c58cd0e40ffac67961b945793876b973728f9b80 < 2cae6a28d8c12c597e8656962271520434c61c48

Linux c58cd0e40ffac67961b945793876b973728f9b80 < 47234e19b00816a8a7b278c7173f6d4e928c43c7

Linux c58cd0e40ffac67961b945793876b973728f9b80 < 3db7285e044144fd88a356f5b641b9cd4b231a77

References

https://git.kernel.org/stable/c/2cae6a28d8c12c597e8656962...
https://git.kernel.org/stable/c/47234e19b00816a8a7b278c71...
https://git.kernel.org/stable/c/3db7285e044144fd88a356f5b...

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.