SB20250916413 - Memory leak in Linux kernel disp mdp5 driver
Published: September 16, 2025 Updated: September 22, 2025
Security Bulletin ID
SB20250916413
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Memory leak (CVE-ID: CVE-2023-53324)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the mdp5_plane_destroy_state() function in drivers/gpu/drm/msm/disp/mdp5/mdp5_plane.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/12dfd02cbd1a678fbd66be0c2f79d5299c4921a9
- https://git.kernel.org/stable/c/2965015006ef18ca96d2eab9ebe6bca884c63291
- https://git.kernel.org/stable/c/5b0dd3a102f64996598bd1e8d8388848a7c561bc
- https://git.kernel.org/stable/c/7fc11a830b2eb07a0e3c6f917e5e636df6fc5d4c
- https://git.kernel.org/stable/c/815e42029f6e1e762898079f85546d6a0391ab95
- https://git.kernel.org/stable/c/b8a61df6f40448cf46611f7af05b00970d08d620
- https://git.kernel.org/stable/c/c0b1eee648702e04f1005d451f9689575b7f52ed
- https://git.kernel.org/stable/c/fd0ad3b2365c1c58aa5a761c18efc4817193beb6
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.19.295
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.195
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.132
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.4.257
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.1.53
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.4.16
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.5.3
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.6