CVE-2023-53396
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-53396
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53396.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-53396
- Downstream
- Related
- Published
- 2025-09-18T13:33:37.360Z
- Modified
- 2025-11-28T02:35:19.424784Z
- Summary
- ubifs: Fix memory leak in do_rename
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
ubifs: Fix memory leak in do_rename
If renaming a file in an encrypted directory, function fscryptsetupfilename allocates memory for a file name. This name is never used, and before returning to the caller the memory for it is not freed.
When running kmemleak on it we see that it is registered as a leak. The report below is triggered by a simple program 'rename' that renames a file in an encrypted directory:
unreferenced object 0xffff888101502840 (size 32): comm "rename", pid 9404, jiffies 4302582475 (age 435.735s) backtrace: _kmemcacheallocnode _kmalloc fscryptsetupfilename dorename ubifsrename vfsrename do_renameat2
To fix this we can remove the call to fscryptsetupfilename as it's not needed.
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53396.json" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/3a36d20e012903f45714df2731261fdefac900cb
- https://git.kernel.org/stable/c/43b2f7d690697182beed6f71aa57b7249d3cfc9c
- https://git.kernel.org/stable/c/517ddc0259d7a7231486bdafde8035c478bc4088
- https://git.kernel.org/stable/c/7e264f67b7d6580eff5c2696961039fd05c69258
- https://git.kernel.org/stable/c/9f565752b328fe53c9e42b7d4e4d89a1da63d738
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53396.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-53396
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedc67bc98d1f0853bb196e9c48eab38b6f2ddab795Fixed43b2f7d690697182beed6f71aa57b7249d3cfc9c
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced278d9a243635f26c05ad95dcf9c5a593b9e04dc6Fixed9f565752b328fe53c9e42b7d4e4d89a1da63d738Fixed7e264f67b7d6580eff5c2696961039fd05c69258Fixed517ddc0259d7a7231486bdafde8035c478bc4088Fixed3a36d20e012903f45714df2731261fdefac900cb
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected17495eb2f7f08113b50aba298c2c1a045824c4f7Last affected868de33a39e0e1e91ed3ce4a23a65f30144d2443
Linux / Kernel
Package
- Name
- Kernel