Refcount Leak in Linux Kernel's mvebu_gicp Module
CVE-2023-53757

Currently unrated

Key Information:

Vendor: Linux
Status: Linux
Vendor: CVE Published:; 8 December 2025

What is CVE-2023-53757?

A vulnerability has been identified in the Linux kernel's mvebu_gicp module, which involves a refcount leak. The issue arises when the function of_irq_find_parent() returns a node pointer with an incremented reference count. If this reference is not released properly, it can lead to memory management issues, potentially causing instability in the kernel. The addition of the of_node_put() function resolves this leak, ensuring appropriate memory handling and enhanced system reliability.

Affected Version(s)

Linux a68a63cb4dfc30e8a79b444aabc7747bb7621acf

Linux a68a63cb4dfc30e8a79b444aabc7747bb7621acf < 4545d7a70ce0fc78b1d3c33c4a0939a86f363b57

Linux a68a63cb4dfc30e8a79b444aabc7747bb7621acf

References

https://git.kernel.org/stable/c/d6b99b9b5e354f9c801a3cc3b...

https://git.kernel.org/stable/c/4545d7a70ce0fc78b1d3c33c4...

https://git.kernel.org/stable/c/c7d78d36e19eeb74a1c12799f...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 8, 2025
Vulnerability Reserved
Dec 8, 2025

JSON