Memory Management Issues in Linux Kernel Affecting Device Resources
CVE-2023-53596
What is CVE-2023-53596?
A vulnerability has been identified in the Linux kernel related to the management of resources associated with unregistered devices. The issue arises when device resources are not properly released if a device does not have an associated bus or driver. This can lead to memory leaks, particularly within the Direct Rendering Manager (DRM) framework, where devices may remain allocated despite being unregistered. To address this flaw, an update ensures that resources are released in both device_del() and device_release() functions. This effectively combines prior solutions to optimize memory management and resource cleanup for devices, enhancing stability and reliability.
Affected Version(s)
Linux a525a3ddeaca69f405d98442ab3c0746e53168dc < 297992e5c63528e603666e36081836204fc36ec9
Linux a525a3ddeaca69f405d98442ab3c0746e53168dc < 3bcc4c2a096e8342c8c719e595ce15de212694dd
Linux a525a3ddeaca69f405d98442ab3c0746e53168dc