SB2025120826 - Memory leak in Linux kernel irqchip driver
Published: December 8, 2025 Updated: December 12, 2025
Security Bulletin ID
SB2025120826
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Memory leak (CVE-ID: CVE-2023-53757)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the mvebu_gicp_probe() function in drivers/irqchip/irq-mvebu-gicp.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/4545d7a70ce0fc78b1d3c33c4a0939a86f363b57
- https://git.kernel.org/stable/c/88cb93d3a16f706bd7213f8a5882c394e5d10c4e
- https://git.kernel.org/stable/c/91e149b201bdb68c77011d50d011e47fadbcc8bd
- https://git.kernel.org/stable/c/9419e700021a393f67be36abd0c4f3acc6139041
- https://git.kernel.org/stable/c/bb755e020abc24793b9411c9419ed43f07f9a03d
- https://git.kernel.org/stable/c/c7d78d36e19eeb74a1c12799fbadbcdbaf36c0bd
- https://git.kernel.org/stable/c/cee12e8be8e227731a845ae43a4c9ce2e404be45
- https://git.kernel.org/stable/c/d6b99b9b5e354f9c801a3cc3b1d4881d920e1718
- https://mirrors.edge.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.14.308