SB20251001163 - Memory leak in Linux kernel clk tegra driver
Published: October 1, 2025 Updated: October 27, 2025
Security Bulletin ID
SB20251001163
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Memory leak (CVE-ID: CVE-2023-53505)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the load_timings_from_dt() and tegra_clk_register_emc() functions in drivers/clk/tegra/clk-tegra124-emc.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/404e9f741acfb188212f7142d91e247630dd77cc
- https://git.kernel.org/stable/c/4e59e355f9fcccd9edf65d09f769bb4c163a1c36
- https://git.kernel.org/stable/c/53a06e5924c0d43c11379a08c5a78529c3e61595
- https://git.kernel.org/stable/c/801c8341f7aff07c494b53e627970b72635af5d3
- https://git.kernel.org/stable/c/96bafece6ff380138896f009141fd7337070e680
- https://git.kernel.org/stable/c/e969c144d908ea9387442659f103d374c8ff682d
- https://git.kernel.org/stable/c/fd1c117bb5d7e033bf1aa25ac97ff421f81a1199
- https://mirrors.edge.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.15.121