CVE-2023-53177 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved:

media: hi846: fix usage of pm_runtime_get_if_in_use()

pm_runtime_get_if_in_use() does not only return nonzero values when
the device is in use, it can return a negative errno too.

And especially during resuming from system suspend, when runtime pm
is not yet up again, -EAGAIN is being returned, so the subsequent
pm_runtime_put() call results in a refcount underflow.

Fix system-resume by handling -EAGAIN of pm_runtime_get_if_in_use().

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/04fc06f6dc1592ed5d675311ac50d8fba5db62ab
https://git.kernel.org/stable/c/42ec6269f98edd915ee37da3c6456bb6243ea56a
https://git.kernel.org/stable/c/c5dcd7a19f1ed8fe98384f3a9444c7c53befd74e

History

Mon, 15 Sep 2025 14:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: media: hi846: fix usage of pm_runtime_get_if_in_use() pm_runtime_get_if_in_use() does not only return nonzero values when the device is in use, it can return a negative errno too. And especially during resuming from system suspend, when runtime pm is not yet up again, -EAGAIN is being returned, so the subsequent pm_runtime_put() call results in a refcount underflow. Fix system-resume by handling -EAGAIN of pm_runtime_get_if_in_use().
Title		media: hi846: fix usage of pm_runtime_get_if_in_use()
References		https://git.kernel.org/stable/c/04fc06f6dc1592ed5d675311ac50d8fba5db62ab https://git.kernel.org/stable/c/42ec6269f98edd915ee37da3c6456bb6243ea56a https://git.kernel.org/stable/c/c5dcd7a19f1ed8fe98384f3a9444c7c53befd74e

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-09-15T14:04:20.626Z

Updated: 2025-09-15T14:04:20.626Z

Reserved: 2025-09-15T13:59:19.064Z

Link: CVE-2023-53177

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-09-15T14:15:39.670

Modified: 2025-09-15T15:22:27.090

Link: CVE-2023-53177

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-53177", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2025-09-15T13:59:19.064Z", "datePublished": "2025-09-15T14:04:20.626Z", "dateUpdated": "2025-09-15T14:04:20.626Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-09-15T14:04:20.626Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: hi846: fix usage of pm_runtime_get_if_in_use()\n\npm_runtime_get_if_in_use() does not only return nonzero values when\nthe device is in use, it can return a negative errno too.\n\nAnd especially during resuming from system suspend, when runtime pm\nis not yet up again, -EAGAIN is being returned, so the subsequent\npm_runtime_put() call results in a refcount underflow.\n\nFix system-resume by handling -EAGAIN of pm_runtime_get_if_in_use()."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/media/i2c/hi846.c"], "versions": [{"version": "e8c0882685f9152f0d729664a12bcbe749cb7736", "lessThan": "42ec6269f98edd915ee37da3c6456bb6243ea56a", "status": "affected", "versionType": "git"}, {"version": "e8c0882685f9152f0d729664a12bcbe749cb7736", "lessThan": "c5dcd7a19f1ed8fe98384f3a9444c7c53befd74e", "status": "affected", "versionType": "git"}, {"version": "e8c0882685f9152f0d729664a12bcbe749cb7736", "lessThan": "04fc06f6dc1592ed5d675311ac50d8fba5db62ab", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/media/i2c/hi846.c"], "versions": [{"version": "5.16", "status": "affected"}, {"version": "0", "lessThan": "5.16", "status": "unaffected", "versionType": "semver"}, {"version": "6.1.39", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.4.4", "lessThanOrEqual": "6.4.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.5", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.16", "versionEndExcluding": "6.1.39"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.16", "versionEndExcluding": "6.4.4"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionStartIncluding": "5.16", "versionEndExcluding": "6.5"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/42ec6269f98edd915ee37da3c6456bb6243ea56a"}, {"url": "https://git.kernel.org/stable/c/c5dcd7a19f1ed8fe98384f3a9444c7c53befd74e"}, {"url": "https://git.kernel.org/stable/c/04fc06f6dc1592ed5d675311ac50d8fba5db62ab"}], "title": "media: hi846: fix usage of pm_runtime_get_if_in_use()", "x_generator": {"engine": "bippy-1.2.0"}}}}