vulnerability
Debian: CVE-2023-52670: linux -- security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | 05/17/2024 | 06/27/2024 | 02/20/2025 |
Description
In the Linux kernel, the following vulnerability has been resolved:
rpmsg: virtio: Free driver_override when rpmsg_remove()
Free driver_override when rpmsg_remove(), otherwise
the following memory leak will occur:
unreferenced object 0xffff0000d55d7080 (size 128):
comm "kworker/u8:2", pid 56, jiffies 4294893188 (age 214.272s)
hex dump (first 32 bytes):
72 70 6d 73 67 5f 6e 73 00 00 00 00 00 00 00 00 rpmsg_ns........
00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
backtrace:
[] __kmem_cache_alloc_node+0x1f8/0x320
[] __kmalloc_node_track_caller+0x44/0x70
[] kstrndup+0x4c/0x90
[ [] rpmsg_register_device_override+0x98/0x170
[] rpmsg_ns_register_device+0x24/0x30
[] rpmsg_probe+0x2e0/0x3ec
[] virtio_dev_probe+0x1c0/0x280
[] really_probe+0xbc/0x2dc
[] __driver_probe_device+0x78/0xe0
[] driver_probe_device+0xd8/0x160
[] __device_attach_driver+0xb8/0x140
[] bus_for_each_drv+0x7c/0xd4
[] __device_attach+0x9c/0x19c
[] device_initial_probe+0x14/0x20
[] bus_probe_device+0xa0/0xac
Solution
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.