cassini: Fix a memory leak in the error handling path of cas_init_one()
CVE-2023-53435

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
18 September 2025

What is CVE-2023-53435?

In the Linux kernel, the following vulnerability has been resolved:

cassini: Fix a memory leak in the error handling path of cas_init_one()

cas_saturn_firmware_init() allocates some memory using vmalloc(). This memory is freed in the .remove() function but not it the error handling path of the probe.

Add the missing vfree() to avoid a memory leak, should an error occur.

Affected Version(s)

Linux fcaa40669cd798ca2ac0d15441e8a1d1145f2b16 < 11c0ed097a874156957b515d0ba7e356142eab87

Linux fcaa40669cd798ca2ac0d15441e8a1d1145f2b16 < 60d8e8b88087d68e10c8991a0f6733fa2f963ff0

Linux fcaa40669cd798ca2ac0d15441e8a1d1145f2b16

References

https://git.kernel.org/stable/c/11c0ed097a874156957b515d0...
https://git.kernel.org/stable/c/60d8e8b88087d68e10c8991a0...
https://git.kernel.org/stable/c/e20105d967ab5b53ff50a0e59...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2023-53435 : Memory Leak Vulnerability in Linux Kernel Affecting Cassini Driver