CVE-2023-54230 (GCVE-0-2023-54230)

Vulnerability from cvelistv5 – Published: 2025-12-30 12:11 – Updated: 2025-12-30 12:11
VLAI?
Title
amba: bus: fix refcount leak
Summary
In the Linux kernel, the following vulnerability has been resolved: amba: bus: fix refcount leak commit 5de1540b7bc4 ("drivers/amba: create devices from device tree") increases the refcount of of_node, but not releases it in amba_device_release, so there is refcount leak. By using of_node_put to avoid refcount leak.
Severity ?
No CVSS data available.
Assigner
References
Impacted products
Vendor Product Version
Linux Linux Affected: 5de1540b7bc4c23470f86add1e517be41e7fefe2 , < 94e398df32e850f26828690ee62f7441979583cc (git)
Affected: 5de1540b7bc4c23470f86add1e517be41e7fefe2 , < 9062ce0ccbd82fbe81cc839a512c0ad90847e01c (git)
Affected: 5de1540b7bc4c23470f86add1e517be41e7fefe2 , < 03db4fe7917bb160eeccf3968835475fa32b7e10 (git)
Affected: 5de1540b7bc4c23470f86add1e517be41e7fefe2 , < 9baf2278b3eed2c50112169121257d8a6ee0606c (git)
Affected: 5de1540b7bc4c23470f86add1e517be41e7fefe2 , < 4f1807fddd9bf175ee5e14fffc6b6106e4b297ef (git)
Affected: 5de1540b7bc4c23470f86add1e517be41e7fefe2 , < 81ff633a88be2482c163d3acd2801d501261ce6a (git)
Affected: 5de1540b7bc4c23470f86add1e517be41e7fefe2 , < 206fadb7278ceac7593dd0b945a77b9df856a674 (git)
Affected: 5de1540b7bc4c23470f86add1e517be41e7fefe2 , < 8b60a706166de5de82314494704c2419e7657bf8 (git)
Affected: 5de1540b7bc4c23470f86add1e517be41e7fefe2 , < e312cbdc11305568554a9e18a2ea5c2492c183f3 (git)
Create a notification for this product.
    Linux Linux Affected: 3.1
Unaffected: 0 , < 3.1 (semver)
Unaffected: 4.14.326 , ≤ 4.14.* (semver)
Unaffected: 4.19.295 , ≤ 4.19.* (semver)
Unaffected: 5.4.257 , ≤ 5.4.* (semver)
Unaffected: 5.10.195 , ≤ 5.10.* (semver)
Unaffected: 5.15.132 , ≤ 5.15.* (semver)
Unaffected: 6.1.53 , ≤ 6.1.* (semver)
Unaffected: 6.4.16 , ≤ 6.4.* (semver)
Unaffected: 6.5.3 , ≤ 6.5.* (semver)
Unaffected: 6.6 , ≤ * (original_commit_for_fix)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "Linux",
          "programFiles": [
            "drivers/amba/bus.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "lessThan": "94e398df32e850f26828690ee62f7441979583cc",
              "status": "affected",
              "version": "5de1540b7bc4c23470f86add1e517be41e7fefe2",
              "versionType": "git"
            },
            {
              "lessThan": "9062ce0ccbd82fbe81cc839a512c0ad90847e01c",
              "status": "affected",
              "version": "5de1540b7bc4c23470f86add1e517be41e7fefe2",
              "versionType": "git"
            },
            {
              "lessThan": "03db4fe7917bb160eeccf3968835475fa32b7e10",
              "status": "affected",
              "version": "5de1540b7bc4c23470f86add1e517be41e7fefe2",
              "versionType": "git"
            },
            {
              "lessThan": "9baf2278b3eed2c50112169121257d8a6ee0606c",
              "status": "affected",
              "version": "5de1540b7bc4c23470f86add1e517be41e7fefe2",
              "versionType": "git"
            },
            {
              "lessThan": "4f1807fddd9bf175ee5e14fffc6b6106e4b297ef",
              "status": "affected",
              "version": "5de1540b7bc4c23470f86add1e517be41e7fefe2",
              "versionType": "git"
            },
            {
              "lessThan": "81ff633a88be2482c163d3acd2801d501261ce6a",
              "status": "affected",
              "version": "5de1540b7bc4c23470f86add1e517be41e7fefe2",
              "versionType": "git"
            },
            {
              "lessThan": "206fadb7278ceac7593dd0b945a77b9df856a674",
              "status": "affected",
              "version": "5de1540b7bc4c23470f86add1e517be41e7fefe2",
              "versionType": "git"
            },
            {
              "lessThan": "8b60a706166de5de82314494704c2419e7657bf8",
              "status": "affected",
              "version": "5de1540b7bc4c23470f86add1e517be41e7fefe2",
              "versionType": "git"
            },
            {
              "lessThan": "e312cbdc11305568554a9e18a2ea5c2492c183f3",
              "status": "affected",
              "version": "5de1540b7bc4c23470f86add1e517be41e7fefe2",
              "versionType": "git"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "Linux",
          "programFiles": [
            "drivers/amba/bus.c"
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "vendor": "Linux",
          "versions": [
            {
              "status": "affected",
              "version": "3.1"
            },
            {
              "lessThan": "3.1",
              "status": "unaffected",
              "version": "0",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.14.*",
              "status": "unaffected",
              "version": "4.14.326",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "4.19.*",
              "status": "unaffected",
              "version": "4.19.295",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.4.*",
              "status": "unaffected",
              "version": "5.4.257",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.10.*",
              "status": "unaffected",
              "version": "5.10.195",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "5.15.*",
              "status": "unaffected",
              "version": "5.15.132",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.1.*",
              "status": "unaffected",
              "version": "6.1.53",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.4.*",
              "status": "unaffected",
              "version": "6.4.16",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "6.5.*",
              "status": "unaffected",
              "version": "6.5.3",
              "versionType": "semver"
            },
            {
              "lessThanOrEqual": "*",
              "status": "unaffected",
              "version": "6.6",
              "versionType": "original_commit_for_fix"
            }
          ]
        }
      ],
      "cpeApplicability": [
        {
          "nodes": [
            {
              "cpeMatch": [
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.14.326",
                  "versionStartIncluding": "3.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "4.19.295",
                  "versionStartIncluding": "3.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.4.257",
                  "versionStartIncluding": "3.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.10.195",
                  "versionStartIncluding": "3.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "5.15.132",
                  "versionStartIncluding": "3.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.1.53",
                  "versionStartIncluding": "3.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.4.16",
                  "versionStartIncluding": "3.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.5.3",
                  "versionStartIncluding": "3.1",
                  "vulnerable": true
                },
                {
                  "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                  "versionEndExcluding": "6.6",
                  "versionStartIncluding": "3.1",
                  "vulnerable": true
                }
              ],
              "negate": false,
              "operator": "OR"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In the Linux kernel, the following vulnerability has been resolved:\n\namba: bus: fix refcount leak\n\ncommit 5de1540b7bc4 (\"drivers/amba: create devices from device tree\")\nincreases the refcount of of_node, but not releases it in\namba_device_release, so there is refcount leak. By using of_node_put\nto avoid refcount leak."
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2025-12-30T12:11:22.230Z",
        "orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
        "shortName": "Linux"
      },
      "references": [
        {
          "url": "https://git.kernel.org/stable/c/94e398df32e850f26828690ee62f7441979583cc"
        },
        {
          "url": "https://git.kernel.org/stable/c/9062ce0ccbd82fbe81cc839a512c0ad90847e01c"
        },
        {
          "url": "https://git.kernel.org/stable/c/03db4fe7917bb160eeccf3968835475fa32b7e10"
        },
        {
          "url": "https://git.kernel.org/stable/c/9baf2278b3eed2c50112169121257d8a6ee0606c"
        },
        {
          "url": "https://git.kernel.org/stable/c/4f1807fddd9bf175ee5e14fffc6b6106e4b297ef"
        },
        {
          "url": "https://git.kernel.org/stable/c/81ff633a88be2482c163d3acd2801d501261ce6a"
        },
        {
          "url": "https://git.kernel.org/stable/c/206fadb7278ceac7593dd0b945a77b9df856a674"
        },
        {
          "url": "https://git.kernel.org/stable/c/8b60a706166de5de82314494704c2419e7657bf8"
        },
        {
          "url": "https://git.kernel.org/stable/c/e312cbdc11305568554a9e18a2ea5c2492c183f3"
        }
      ],
      "title": "amba: bus: fix refcount leak",
      "x_generator": {
        "engine": "bippy-1.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67",
    "assignerShortName": "Linux",
    "cveId": "CVE-2023-54230",
    "datePublished": "2025-12-30T12:11:22.230Z",
    "dateReserved": "2025-12-30T12:06:44.502Z",
    "dateUpdated": "2025-12-30T12:11:22.230Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-54230\",\"sourceIdentifier\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\",\"published\":\"2025-12-30T13:16:11.410\",\"lastModified\":\"2025-12-31T20:42:43.210\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"In the Linux kernel, the following vulnerability has been resolved:\\n\\namba: bus: fix refcount leak\\n\\ncommit 5de1540b7bc4 (\\\"drivers/amba: create devices from device tree\\\")\\nincreases the refcount of of_node, but not releases it in\\namba_device_release, so there is refcount leak. By using of_node_put\\nto avoid refcount leak.\"}],\"metrics\":{},\"references\":[{\"url\":\"https://git.kernel.org/stable/c/03db4fe7917bb160eeccf3968835475fa32b7e10\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/206fadb7278ceac7593dd0b945a77b9df856a674\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/4f1807fddd9bf175ee5e14fffc6b6106e4b297ef\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/81ff633a88be2482c163d3acd2801d501261ce6a\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/8b60a706166de5de82314494704c2419e7657bf8\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/9062ce0ccbd82fbe81cc839a512c0ad90847e01c\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/94e398df32e850f26828690ee62f7441979583cc\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/9baf2278b3eed2c50112169121257d8a6ee0606c\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"},{\"url\":\"https://git.kernel.org/stable/c/e312cbdc11305568554a9e18a2ea5c2492c183f3\",\"source\":\"416baaa9-dc9f-4396-8d5f-8c081fb06d67\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.