CVE-2023-53197 - Vulnerability Details - OpenCVE

In the Linux kernel, the following vulnerability has been resolved:

USB: uhci: fix memory leak with using debugfs_lookup()

When calling debugfs_lookup() the result must have dput() called on it,
otherwise the memory will leak over time. To make things simpler, just
call debugfs_lookup_and_remove() instead which handles all of the logic
at once.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/0a3f82c79c86278e7f144564b1cb6cc5c3657144
https://git.kernel.org/stable/c/9cb88847b8b86f132309030022a23dca895b6f61
https://git.kernel.org/stable/c/c6af1dbc99ad37bf67c8703982df4d7f12d256c1
https://git.kernel.org/stable/c/e529aeb771aef1402c899b6b405610ef444d5d88

History

Mon, 15 Sep 2025 14:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: USB: uhci: fix memory leak with using debugfs_lookup() When calling debugfs_lookup() the result must have dput() called on it, otherwise the memory will leak over time. To make things simpler, just call debugfs_lookup_and_remove() instead which handles all of the logic at once.
Title		USB: uhci: fix memory leak with using debugfs_lookup()
References		https://git.kernel.org/stable/c/0a3f82c79c86278e7f144564b1cb6cc5c3657144 https://git.kernel.org/stable/c/9cb88847b8b86f132309030022a23dca895b6f61 https://git.kernel.org/stable/c/c6af1dbc99ad37bf67c8703982df4d7f12d256c1 https://git.kernel.org/stable/c/e529aeb771aef1402c899b6b405610ef444d5d88

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-09-15T14:06:45.301Z

Updated: 2025-09-15T14:06:45.301Z

Reserved: 2025-09-15T13:59:19.067Z

Link: CVE-2023-53197

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-09-15T14:15:42.107

Modified: 2025-09-15T15:22:27.090

Link: CVE-2023-53197

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-53197", "assignerOrgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "state": "PUBLISHED", "assignerShortName": "Linux", "dateReserved": "2025-09-15T13:59:19.067Z", "datePublished": "2025-09-15T14:06:45.301Z", "dateUpdated": "2025-09-15T14:06:45.301Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "416baaa9-dc9f-4396-8d5f-8c081fb06d67", "shortName": "Linux", "dateUpdated": "2025-09-15T14:06:45.301Z"}, "descriptions": [{"lang": "en", "value": "In the Linux kernel, the following vulnerability has been resolved:\n\nUSB: uhci: fix memory leak with using debugfs_lookup()\n\nWhen calling debugfs_lookup() the result must have dput() called on it,\notherwise the memory will leak over time. To make things simpler, just\ncall debugfs_lookup_and_remove() instead which handles all of the logic\nat once."}], "affected": [{"product": "Linux", "vendor": "Linux", "defaultStatus": "unaffected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/usb/host/uhci-hcd.c"], "versions": [{"version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2", "lessThan": "c6af1dbc99ad37bf67c8703982df4d7f12d256c1", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2", "lessThan": "e529aeb771aef1402c899b6b405610ef444d5d88", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2", "lessThan": "9cb88847b8b86f132309030022a23dca895b6f61", "status": "affected", "versionType": "git"}, {"version": "1da177e4c3f41524e886b7f1b8a0c1fc7321cac2", "lessThan": "0a3f82c79c86278e7f144564b1cb6cc5c3657144", "status": "affected", "versionType": "git"}]}, {"product": "Linux", "vendor": "Linux", "defaultStatus": "affected", "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "programFiles": ["drivers/usb/host/uhci-hcd.c"], "versions": [{"version": "5.15.100", "lessThanOrEqual": "5.15.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.1.18", "lessThanOrEqual": "6.1.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.2.5", "lessThanOrEqual": "6.2.*", "status": "unaffected", "versionType": "semver"}, {"version": "6.3", "lessThanOrEqual": "*", "status": "unaffected", "versionType": "original_commit_for_fix"}]}], "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionEndExcluding": "5.15.100"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionEndExcluding": "6.1.18"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionEndExcluding": "6.2.5"}, {"vulnerable": true, "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*", "versionEndExcluding": "6.3"}]}]}], "references": [{"url": "https://git.kernel.org/stable/c/c6af1dbc99ad37bf67c8703982df4d7f12d256c1"}, {"url": "https://git.kernel.org/stable/c/e529aeb771aef1402c899b6b405610ef444d5d88"}, {"url": "https://git.kernel.org/stable/c/9cb88847b8b86f132309030022a23dca895b6f61"}, {"url": "https://git.kernel.org/stable/c/0a3f82c79c86278e7f144564b1cb6cc5c3657144"}], "title": "USB: uhci: fix memory leak with using debugfs_lookup()", "x_generator": {"engine": "bippy-1.2.0"}}}}