CVE-2023-53631 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved:

platform/x86: dell-sysman: Fix reference leak

If a duplicate attribute is found using kset_find_obj(),
a reference to that attribute is returned. This means
that we need to dispose it accordingly. Use kobject_put()
to dispose the duplicate attribute in such a case.

Compile-tested only.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00018.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Linux	Linux Kernel

Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/6ced15ff1746006476f1407fe722911a45a7874d
https://git.kernel.org/stable/c/7295a996fdab7bf83dc3d4078fa8b139b8e0a1bf
https://git.kernel.org/stable/c/9d9e03bec147407826266580e7d6ec427241d859
https://git.kernel.org/stable/c/c5402011992bcc2b5614fe7fef24f9cdaec7473b
https://git.kernel.org/stable/c/d079a3e1ccdd183b75db4f5289be347980b45284
https://lore.kernel.org/linux-cve-announce/2025100713-CVE-2023-53631-0542@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-53631
https://www.cve.org/CVERecord?id=CVE-2023-53631

History

Wed, 08 Oct 2025 13:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Linux Linux linux Kernel
Vendors & Products		Linux Linux linux Kernel

Wed, 08 Oct 2025 00:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025100713-CVE-2023-53631-0542@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2023-53631 https://www.cve.org/CVERecord?id=CVE-2023-53631
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Low`

Tue, 07 Oct 2025 15:30:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-sysman: Fix reference leak If a duplicate attribute is found using kset_find_obj(), a reference to that attribute is returned. This means that we need to dispose it accordingly. Use kobject_put() to dispose the duplicate attribute in such a case. Compile-tested only.
Title		platform/x86: dell-sysman: Fix reference leak
References		https://git.kernel.org/stable/c/6ced15ff1746006476f1407fe722911a45a7874d https://git.kernel.org/stable/c/7295a996fdab7bf83dc3d4078fa8b139b8e0a1bf https://git.kernel.org/stable/c/9d9e03bec147407826266580e7d6ec427241d859 https://git.kernel.org/stable/c/c5402011992bcc2b5614fe7fef24f9cdaec7473b https://git.kernel.org/stable/c/d079a3e1ccdd183b75db4f5289be347980b45284

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-10-07T15:19:34.289Z

Updated: 2025-10-07T15:19:34.289Z

Reserved: 2025-10-07T15:16:59.656Z

Link: CVE-2023-53631

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-10-07T16:15:46.167

Modified: 2025-10-08T19:38:32.610

Link: CVE-2023-53631

Redhat

Severity : Low

Publid Date: 2025-10-07T00:00:00Z

Links: CVE-2023-53631 - Bugzilla

OpenCVE Enrichment

Updated: 2025-10-08T13:36:32Z

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object