CVE-2023-53225 (GCVE-0-2023-53225)
Vulnerability from cvelistv5 – Published: 2025-09-15 14:21 – Updated: 2026-01-14 17:52
VLAI?
Title
spi: imx: Don't skip cleanup in remove's error path
Summary
In the Linux kernel, the following vulnerability has been resolved:
spi: imx: Don't skip cleanup in remove's error path
Returning early in a platform driver's remove callback is wrong. In this
case the dma resources are not released in the error path. this is never
retried later and so this is a permanent leak. To fix this, only skip
hardware disabling if waking the device fails.
Severity ?
5.5 (Medium)
CWE
- CWE-401 - Missing Release of Memory after Effective Lifetime
Assigner
References
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Linux | Linux |
Affected:
d593574aff0ab846136190b1729c151c736727ec , < aa93a46f998a9069368026ac52bba96868c59157
(git)
Affected: d593574aff0ab846136190b1729c151c736727ec , < f90822ad63d11301e425311dac0c8e12ca1737b8 (git) Affected: d593574aff0ab846136190b1729c151c736727ec , < 6d16305a1535873e0a8a8ae92ea2d9106ec2d7df (git) Affected: d593574aff0ab846136190b1729c151c736727ec , < 57a463226638f1ceabbb029cbd21b0c94640f1b5 (git) Affected: d593574aff0ab846136190b1729c151c736727ec , < b64cb3f085fed296103c91f0db6acad30a021b36 (git) Affected: d593574aff0ab846136190b1729c151c736727ec , < 11951c9e3f364d7ae3b568a0e52c8335d43066b5 (git) Affected: fc58a98f1c98b22d31c53913cca38d5c43807cb4 (git) Affected: 28ae79a518421348abfc2a2dffd6a6b6e3699476 (git) Affected: b6aaaaed67b170a9841f0f598cd45ccbfe76e15e (git) Affected: f84a8d446a16379df5844bc2bd50f0b7431a4718 (git) Affected: 1333c3e996eb799286ee2ef2c01752da45bf926f (git) Affected: cfd96cbd607ab5d63a33cd63673221f4d572ea8c (git) Affected: bac4bf53ca7c65d6c06808aab70c6caa0b9c78b9 (git) |
|||||||
|
|||||||||
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2023-53225",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-01-14T17:51:05.252830Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-401",
"description": "CWE-401 Missing Release of Memory after Effective Lifetime",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-01-14T17:52:59.716Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"product": "Linux",
"programFiles": [
"drivers/spi/spi-imx.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"lessThan": "aa93a46f998a9069368026ac52bba96868c59157",
"status": "affected",
"version": "d593574aff0ab846136190b1729c151c736727ec",
"versionType": "git"
},
{
"lessThan": "f90822ad63d11301e425311dac0c8e12ca1737b8",
"status": "affected",
"version": "d593574aff0ab846136190b1729c151c736727ec",
"versionType": "git"
},
{
"lessThan": "6d16305a1535873e0a8a8ae92ea2d9106ec2d7df",
"status": "affected",
"version": "d593574aff0ab846136190b1729c151c736727ec",
"versionType": "git"
},
{
"lessThan": "57a463226638f1ceabbb029cbd21b0c94640f1b5",
"status": "affected",
"version": "d593574aff0ab846136190b1729c151c736727ec",
"versionType": "git"
},
{
"lessThan": "b64cb3f085fed296103c91f0db6acad30a021b36",
"status": "affected",
"version": "d593574aff0ab846136190b1729c151c736727ec",
"versionType": "git"
},
{
"lessThan": "11951c9e3f364d7ae3b568a0e52c8335d43066b5",
"status": "affected",
"version": "d593574aff0ab846136190b1729c151c736727ec",
"versionType": "git"
},
{
"status": "affected",
"version": "fc58a98f1c98b22d31c53913cca38d5c43807cb4",
"versionType": "git"
},
{
"status": "affected",
"version": "28ae79a518421348abfc2a2dffd6a6b6e3699476",
"versionType": "git"
},
{
"status": "affected",
"version": "b6aaaaed67b170a9841f0f598cd45ccbfe76e15e",
"versionType": "git"
},
{
"status": "affected",
"version": "f84a8d446a16379df5844bc2bd50f0b7431a4718",
"versionType": "git"
},
{
"status": "affected",
"version": "1333c3e996eb799286ee2ef2c01752da45bf926f",
"versionType": "git"
},
{
"status": "affected",
"version": "cfd96cbd607ab5d63a33cd63673221f4d572ea8c",
"versionType": "git"
},
{
"status": "affected",
"version": "bac4bf53ca7c65d6c06808aab70c6caa0b9c78b9",
"versionType": "git"
}
]
},
{
"defaultStatus": "affected",
"product": "Linux",
"programFiles": [
"drivers/spi/spi-imx.c"
],
"repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
"vendor": "Linux",
"versions": [
{
"status": "affected",
"version": "4.16"
},
{
"lessThan": "4.16",
"status": "unaffected",
"version": "0",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.10.*",
"status": "unaffected",
"version": "5.10.180",
"versionType": "semver"
},
{
"lessThanOrEqual": "5.15.*",
"status": "unaffected",
"version": "5.15.111",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.1.*",
"status": "unaffected",
"version": "6.1.28",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.2.*",
"status": "unaffected",
"version": "6.2.15",
"versionType": "semver"
},
{
"lessThanOrEqual": "6.3.*",
"status": "unaffected",
"version": "6.3.2",
"versionType": "semver"
},
{
"lessThanOrEqual": "*",
"status": "unaffected",
"version": "6.4",
"versionType": "original_commit_for_fix"
}
]
}
],
"cpeApplicability": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.10.180",
"versionStartIncluding": "4.16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "5.15.111",
"versionStartIncluding": "4.16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.1.28",
"versionStartIncluding": "4.16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.2.15",
"versionStartIncluding": "4.16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.3.2",
"versionStartIncluding": "4.16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionEndExcluding": "6.4",
"versionStartIncluding": "4.16",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.16.57",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "3.18.94",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.1.50",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.4.115",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.9.80",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.14.17",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
"versionStartIncluding": "4.15.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "In the Linux kernel, the following vulnerability has been resolved:\n\nspi: imx: Don\u0027t skip cleanup in remove\u0027s error path\n\nReturning early in a platform driver\u0027s remove callback is wrong. In this\ncase the dma resources are not released in the error path. this is never\nretried later and so this is a permanent leak. To fix this, only skip\nhardware disabling if waking the device fails."
}
],
"providerMetadata": {
"dateUpdated": "2025-09-15T14:21:54.138Z",
"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"shortName": "Linux"
},
"references": [
{
"url": "https://git.kernel.org/stable/c/aa93a46f998a9069368026ac52bba96868c59157"
},
{
"url": "https://git.kernel.org/stable/c/f90822ad63d11301e425311dac0c8e12ca1737b8"
},
{
"url": "https://git.kernel.org/stable/c/6d16305a1535873e0a8a8ae92ea2d9106ec2d7df"
},
{
"url": "https://git.kernel.org/stable/c/57a463226638f1ceabbb029cbd21b0c94640f1b5"
},
{
"url": "https://git.kernel.org/stable/c/b64cb3f085fed296103c91f0db6acad30a021b36"
},
{
"url": "https://git.kernel.org/stable/c/11951c9e3f364d7ae3b568a0e52c8335d43066b5"
}
],
"title": "spi: imx: Don\u0027t skip cleanup in remove\u0027s error path",
"x_generator": {
"engine": "bippy-1.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
"assignerShortName": "Linux",
"cveId": "CVE-2023-53225",
"datePublished": "2025-09-15T14:21:54.138Z",
"dateReserved": "2025-09-15T14:19:21.846Z",
"dateUpdated": "2026-01-14T17:52:59.716Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2023-53225\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-09-15T15:15:49.363\",\"lastModified\":\"2026-01-14T18:16:32.823\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\nspi: imx: Don\u0027t skip cleanup in remove\u0027s error path\\n\\nReturning early in a platform driver\u0027s remove callback is wrong. In this\\ncase the dma resources are not released in the error path. this is never\\nretried later and so this is a permanent leak. To fix this, only skip\\nhardware disabling if waking the device fails.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-401\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-401\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.16.57\",\"versionEndExcluding\":\"3.17\",\"matchCriteriaId\":\"38BA6B6B-1C08-4FA2-9202-D6F0F7E2F21C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.18.94\",\"versionEndExcluding\":\"3.19\",\"matchCriteriaId\":\"38DD1C0A-BCFA-4EE8-846B-9C4DEFE72BCC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1.50\",\"versionEndExcluding\":\"4.2\",\"matchCriteriaId\":\"3D1ECF78-BF07-4C94-927B-900568638219\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.4.115\",\"versionEndExcluding\":\"4.5\",\"matchCriteriaId\":\"6540EB4C-8E6D-4CF1-970D-18D87DB53939\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.9.80\",\"versionEndExcluding\":\"4.10\",\"matchCriteriaId\":\"B1EC5DA9-8130-4C21-BD0D-2BAA776BF9E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.14.17\",\"versionEndExcluding\":\"4.15\",\"matchCriteriaId\":\"2BA7EAE9-8C11-49C6-8B79-78FB96E8D13C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.15.1\",\"versionEndExcluding\":\"5.10.180\",\"matchCriteriaId\":\"CE6C96C4-3475-4945-8F88-003D7AA3B863\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.11\",\"versionEndExcluding\":\"5.15.111\",\"matchCriteriaId\":\"2B9DD776-7F17-4F72-B94F-54BFCBC692DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.16\",\"versionEndExcluding\":\"6.1.28\",\"matchCriteriaId\":\"08F855F4-7188-4EE1-BD79-D4B6C7E2EF54\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"versionEndExcluding\":\"6.2.15\",\"matchCriteriaId\":\"3844A90B-940D-46C3-8D7B-9FF63F1AFC2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.3\",\"versionEndExcluding\":\"6.3.2\",\"matchCriteriaId\":\"38F6F330-91A0-4675-8B90-6F950471A7CC\"}]}]}],\"references\":[{\"url\":\"https://git.kernel.org/stable/c/11951c9e3f364d7ae3b568a0e52c8335d43066b5\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/57a463226638f1ceabbb029cbd21b0c94640f1b5\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/6d16305a1535873e0a8a8ae92ea2d9106ec2d7df\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/aa93a46f998a9069368026ac52bba96868c59157\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/b64cb3f085fed296103c91f0db6acad30a021b36\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]},{\"url\":\"https://git.kernel.org/stable/c/f90822ad63d11301e425311dac0c8e12ca1737b8\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"tags\":[\"Patch\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-53225\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-01-14T17:51:05.252830Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-401\", \"description\": \"CWE-401 Missing Release of Memory after Effective Lifetime\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-01-14T17:51:00.585Z\"}}], \"cna\": {\"title\": \"spi: imx: Don\u0027t skip cleanup in remove\u0027s error path\", \"affected\": [{\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"d593574aff0ab846136190b1729c151c736727ec\", \"lessThan\": \"aa93a46f998a9069368026ac52bba96868c59157\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"d593574aff0ab846136190b1729c151c736727ec\", \"lessThan\": \"f90822ad63d11301e425311dac0c8e12ca1737b8\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"d593574aff0ab846136190b1729c151c736727ec\", \"lessThan\": \"6d16305a1535873e0a8a8ae92ea2d9106ec2d7df\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"d593574aff0ab846136190b1729c151c736727ec\", \"lessThan\": \"57a463226638f1ceabbb029cbd21b0c94640f1b5\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"d593574aff0ab846136190b1729c151c736727ec\", \"lessThan\": \"b64cb3f085fed296103c91f0db6acad30a021b36\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"d593574aff0ab846136190b1729c151c736727ec\", \"lessThan\": \"11951c9e3f364d7ae3b568a0e52c8335d43066b5\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"fc58a98f1c98b22d31c53913cca38d5c43807cb4\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"28ae79a518421348abfc2a2dffd6a6b6e3699476\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"b6aaaaed67b170a9841f0f598cd45ccbfe76e15e\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"f84a8d446a16379df5844bc2bd50f0b7431a4718\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"1333c3e996eb799286ee2ef2c01752da45bf926f\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"cfd96cbd607ab5d63a33cd63673221f4d572ea8c\", \"versionType\": \"git\"}, {\"status\": \"affected\", \"version\": \"bac4bf53ca7c65d6c06808aab70c6caa0b9c78b9\", \"versionType\": \"git\"}], \"programFiles\": [\"drivers/spi/spi-imx.c\"], \"defaultStatus\": \"unaffected\"}, {\"repo\": \"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git\", \"vendor\": \"Linux\", \"product\": \"Linux\", \"versions\": [{\"status\": \"affected\", \"version\": \"4.16\"}, {\"status\": \"unaffected\", \"version\": \"0\", \"lessThan\": \"4.16\", \"versionType\": \"semver\"}, {\"status\": \"unaffected\", \"version\": \"5.10.180\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.10.*\"}, {\"status\": \"unaffected\", \"version\": \"5.15.111\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"5.15.*\"}, {\"status\": \"unaffected\", \"version\": \"6.1.28\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.1.*\"}, {\"status\": \"unaffected\", \"version\": \"6.2.15\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.2.*\"}, {\"status\": \"unaffected\", \"version\": \"6.3.2\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"6.3.*\"}, {\"status\": \"unaffected\", \"version\": \"6.4\", \"versionType\": \"original_commit_for_fix\", \"lessThanOrEqual\": \"*\"}], \"programFiles\": [\"drivers/spi/spi-imx.c\"], \"defaultStatus\": \"affected\"}], \"references\": [{\"url\": \"https://git.kernel.org/stable/c/aa93a46f998a9069368026ac52bba96868c59157\"}, {\"url\": \"https://git.kernel.org/stable/c/f90822ad63d11301e425311dac0c8e12ca1737b8\"}, {\"url\": \"https://git.kernel.org/stable/c/6d16305a1535873e0a8a8ae92ea2d9106ec2d7df\"}, {\"url\": \"https://git.kernel.org/stable/c/57a463226638f1ceabbb029cbd21b0c94640f1b5\"}, {\"url\": \"https://git.kernel.org/stable/c/b64cb3f085fed296103c91f0db6acad30a021b36\"}, {\"url\": \"https://git.kernel.org/stable/c/11951c9e3f364d7ae3b568a0e52c8335d43066b5\"}], \"x_generator\": {\"engine\": \"bippy-1.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"In the Linux kernel, the following vulnerability has been resolved:\\n\\nspi: imx: Don\u0027t skip cleanup in remove\u0027s error path\\n\\nReturning early in a platform driver\u0027s remove callback is wrong. In this\\ncase the dma resources are not released in the error path. this is never\\nretried later and so this is a permanent leak. To fix this, only skip\\nhardware disabling if waking the device fails.\"}], \"cpeApplicability\": [{\"nodes\": [{\"negate\": false, \"cpeMatch\": [{\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"5.10.180\", \"versionStartIncluding\": \"4.16\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"5.15.111\", \"versionStartIncluding\": \"4.16\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.1.28\", \"versionStartIncluding\": \"4.16\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.2.15\", \"versionStartIncluding\": \"4.16\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.3.2\", \"versionStartIncluding\": \"4.16\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionEndExcluding\": \"6.4\", \"versionStartIncluding\": \"4.16\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionStartIncluding\": \"3.16.57\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionStartIncluding\": \"3.18.94\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionStartIncluding\": \"4.1.50\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionStartIncluding\": \"4.4.115\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionStartIncluding\": \"4.9.80\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionStartIncluding\": \"4.14.17\"}, {\"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"vulnerable\": true, \"versionStartIncluding\": \"4.15.1\"}], \"operator\": \"OR\"}]}], \"providerMetadata\": {\"orgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"shortName\": \"Linux\", \"dateUpdated\": \"2025-09-15T14:21:54.138Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-53225\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-01-14T17:52:59.716Z\", \"dateReserved\": \"2025-09-15T14:19:21.846Z\", \"assignerOrgId\": \"416baaa9-dc9f-4396-8d5f-8c081fb06d67\", \"datePublished\": \"2025-09-15T14:21:54.138Z\", \"assignerShortName\": \"Linux\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…