CVE-2023-52838

fbdev: imsttfb: fix a resource leak in probe

Description

In the Linux kernel, the following vulnerability has been resolved: fbdev: imsttfb: fix a resource leak in probe I've re-written the error handling but the bug is that if init_imstt() fails we need to call iounmap(par->cmap_regs).

References

Link	Tags
https://git.kernel.org/stable/c/382e1931e0c9cd58a5a8519cdc6cd9dc4d82b485	patch
https://git.kernel.org/stable/c/6c66d737b2726ac7784269ddf32a31634f8f269d	patch
https://git.kernel.org/stable/c/a4dfebec32ec6d420a5506dd56a7834c91be28e4	patch
https://git.kernel.org/stable/c/8e4b510fe91782522b7ca0ca881b663b5d35e513	patch
https://git.kernel.org/stable/c/7bc7b82fb2191b0d50a80ee4e27030918767dd1d	patch
https://git.kernel.org/stable/c/18d26f9baca7d0d309303e3074a2252b8310884a	patch
https://git.kernel.org/stable/c/b346a531159d08c564a312a9eaeea691704f3c00	patch
https://git.kernel.org/stable/c/aba6ab57a910ad4b940c2024d15f2cdbf5b7f76b	patch

Frequently Asked Questions

What is the severity of CVE-2023-52838?: CVE-2023-52838 has been scored as a medium severity vulnerability.
How to fix CVE-2023-52838?: To fix CVE-2023-52838, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2023-52838 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2023-52838 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-52838?: CVE-2023-52838 affects Linux Linux, Linux Linux.

Description

Category

CWE-416 – Use After Free

References

Frequently Asked Questions