Memory Leak Issue in Linux Kernel Affecting NVMe Subsystem
CVE-2023-53670
What is CVE-2023-53670?
A memory leak vulnerability has been identified within the NVMe subsystem of the Linux kernel, specifically related to the dev_pm_qos component. This issue arises during the error handling process, where the function dev_pm_qos_hide_latency_tolerance() fails to properly free allocated memory. As a result, it can lead to an accumulation of unreferenced objects over time, adversely affecting system performance. The development team has implemented a fix to manage resource allocation and ensure proper memory management within the kernel, thereby enhancing overall system stability.
Affected Version(s)
Linux f50fff73d620cd6e8f48bc58d4f1c944615a3fea
Linux f50fff73d620cd6e8f48bc58d4f1c944615a3fea < 7237c26431cc78e5ec3259f4350f3dd58f6a4319
Linux f50fff73d620cd6e8f48bc58d4f1c944615a3fea < 2ed9a89192e3192e5fea7ff6475c8722513f325e