CVE-2023-53696
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-53696
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53696.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-53696
- Downstream
- Published
- 2025-10-22T13:23:37Z
- Modified
- 2025-10-22T22:14:53.091128Z
- Summary
- scsi: qla2xxx: Fix memory leak in qla2x00_probe_one()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Fix memory leak in qla2x00probeone()
There is a memory leak reported by kmemleak:
unreferenced object 0xffffc900003f0000 (size 12288): comm "modprobe", pid 19117, jiffies 4299751452 (age 42490.264s) hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace: [<00000000629261a8>] _vmallocnoderange+0xe56/0x1110 [<0000000001906886>] _vmallocnode+0xbd/0x150 [<000000005bb4dc34>] vmalloc+0x25/0x30 [<00000000a2dc1194>] qla2x00createhost+0x7a0/0xe30 [qla2xxx] [<0000000062b14b47>] qla2x00probeone+0x2eb8/0xd160 [qla2xxx] [<00000000641ccc04>] localpci_probe+0xeb/0x1a0
The root cause is traced to an error-handling path in qla2x00probeone() when the adapter "basevha" initialize failed. The fabscanrp "scan.l" is used to record the port information and it is allocated in qla2x00createhost(). However, it is not released in the error handling path "probefailed".
Fix this by freeing the memory of "scan.l" when an error occurs in the adapter initialization process.
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/44374911ac63f769c442f56fdfadea673c5f4425
- https://git.kernel.org/stable/c/582e35e97318ccd9c81774bac08938291679525f
- https://git.kernel.org/stable/c/85ade4010e13ef152ea925c74d94253db92e5428
- https://git.kernel.org/stable/c/ae73c4dd48f2c79d515d509a0cbe9efb0a197f44
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduceda4239945b8ad112fb914d0605c8f6c5fd3330f61Fixedae73c4dd48f2c79d515d509a0cbe9efb0a197f44
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduceda4239945b8ad112fb914d0605c8f6c5fd3330f61Fixed44374911ac63f769c442f56fdfadea673c5f4425
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduceda4239945b8ad112fb914d0605c8f6c5fd3330f61Fixed582e35e97318ccd9c81774bac08938291679525f
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduceda4239945b8ad112fb914d0605c8f6c5fd3330f61Fixed85ade4010e13ef152ea925c74d94253db92e5428
Affected versions
v4.*
v4.15
v4.15-rc2
v4.15-rc3
v4.15-rc4
v4.15-rc5
v4.15-rc6
v4.15-rc7
v4.15-rc8
v4.15-rc9
v4.16
v4.16-rc1
v4.16-rc2
v4.16-rc3
v4.16-rc4
v4.16-rc5
v4.16-rc6
v4.16-rc7
v4.17
v4.17-rc1
v4.17-rc2
v4.17-rc3
v4.17-rc4
v4.17-rc5
v4.17-rc6
v4.17-rc7
v4.18
v4.18-rc1
v4.18-rc2
v4.18-rc3
v4.18-rc4
v4.18-rc5
v4.18-rc6
v4.18-rc7
v4.18-rc8
v4.19
v4.19-rc1
v4.19-rc2
v4.19-rc3
v4.19-rc4
v4.19-rc5
v4.19-rc6
v4.19-rc7
v4.19-rc8
v4.20
v4.20-rc1
v4.20-rc2
v4.20-rc3
v4.20-rc4
v4.20-rc5
v4.20-rc6
v4.20-rc7
v5.*
v5.0
v5.0-rc1
v5.0-rc2
v5.0-rc3
v5.0-rc4
v5.0-rc5
v5.0-rc6
v5.0-rc7
v5.0-rc8
v5.1
v5.1-rc1
v5.1-rc2
v5.1-rc3
v5.1-rc4
v5.1-rc5
v5.1-rc6
v5.1-rc7
v5.10
v5.10-rc1
v5.10-rc2
v5.10-rc3
v5.10-rc4
v5.10-rc5
v5.10-rc6
v5.10-rc7
v5.11
v5.11-rc1
v5.11-rc2
v5.11-rc3
v5.11-rc4
v5.11-rc5
v5.11-rc6
v5.11-rc7
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.100
v5.15.101
v5.15.102
v5.15.103
v5.15.104
v5.15.105
v5.15.106
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.75
v5.15.76
v5.15.77
v5.15.78
v5.15.79
v5.15.8
v5.15.80
v5.15.81
v5.15.82
v5.15.83
v5.15.84
v5.15.85
v5.15.86
v5.15.87
v5.15.88
v5.15.89
v5.15.9
v5.15.90
v5.15.91
v5.15.92
v5.15.93
v5.15.94
v5.15.95
v5.15.96
v5.15.97
v5.15.98
v5.15.99
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v5.2
v5.2-rc1
v5.2-rc2
v5.2-rc3
v5.2-rc4
v5.2-rc5
v5.2-rc6
v5.2-rc7
v5.3
v5.3-rc1
v5.3-rc2
v5.3-rc3
v5.3-rc4
v5.3-rc5
v5.3-rc6
v5.3-rc7
v5.3-rc8
v5.4
v5.4-rc1
v5.4-rc2
v5.4-rc3
v5.4-rc4
v5.4-rc5
v5.4-rc6
v5.4-rc7
v5.4-rc8
v5.5
v5.5-rc1
v5.5-rc2
v5.5-rc3
v5.5-rc4
v5.5-rc5
v5.5-rc6
v5.5-rc7
v5.6
v5.6-rc1
v5.6-rc2
v5.6-rc3
v5.6-rc4
v5.6-rc5
v5.6-rc6
v5.6-rc7
v5.7
v5.7-rc1
v5.7-rc2
v5.7-rc3
v5.7-rc4
v5.7-rc5
v5.7-rc6
v5.7-rc7
v5.8
v5.8-rc1
v5.8-rc2
v5.8-rc3
v5.8-rc4
v5.8-rc5
v5.8-rc6
v5.8-rc7
v5.9
v5.9-rc1
v5.9-rc2
v5.9-rc3
v5.9-rc4
v5.9-rc5
v5.9-rc6
v5.9-rc7
v5.9-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.3
v6.1.4
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.2.1
v6.2.10
v6.2.2
v6.2.3
v6.2.4
v6.2.5
v6.2.6
v6.2.7
v6.2.8
v6.2.9
v6.3-rc1
Database specific
vanir_signatures
[
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@85ade4010e13ef152ea925c74d94253db92e5428",
"target": {
"file": "drivers/scsi/qla2xxx/qla_os.c",
"function": "qla2x00_probe_one"
},
"signature_version": "v1",
"deprecated": false,
"digest": {
"function_hash": "12436103845433407175032107783563871149",
"length": 22968.0
},
"signature_type": "Function",
"id": "CVE-2023-53696-269290f3"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@44374911ac63f769c442f56fdfadea673c5f4425",
"target": {
"file": "drivers/scsi/qla2xxx/qla_os.c"
},
"signature_version": "v1",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"45233518202922214785529128942654084545",
"178522554248499395014383142303535997908",
"95511220479955383713263017412774169946",
"175768474507867249249924376220051434141"
]
},
"signature_type": "Line",
"id": "CVE-2023-53696-6655b3ce"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@582e35e97318ccd9c81774bac08938291679525f",
"target": {
"file": "drivers/scsi/qla2xxx/qla_os.c"
},
"signature_version": "v1",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"45233518202922214785529128942654084545",
"178522554248499395014383142303535997908",
"95511220479955383713263017412774169946",
"175768474507867249249924376220051434141"
]
},
"signature_type": "Line",
"id": "CVE-2023-53696-6a31ed1a"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@582e35e97318ccd9c81774bac08938291679525f",
"target": {
"file": "drivers/scsi/qla2xxx/qla_os.c",
"function": "qla2x00_probe_one"
},
"signature_version": "v1",
"deprecated": false,
"digest": {
"function_hash": "12436103845433407175032107783563871149",
"length": 22968.0
},
"signature_type": "Function",
"id": "CVE-2023-53696-e59e56a7"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@85ade4010e13ef152ea925c74d94253db92e5428",
"target": {
"file": "drivers/scsi/qla2xxx/qla_os.c"
},
"signature_version": "v1",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"45233518202922214785529128942654084545",
"178522554248499395014383142303535997908",
"95511220479955383713263017412774169946",
"175768474507867249249924376220051434141"
]
},
"signature_type": "Line",
"id": "CVE-2023-53696-eace12c8"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ae73c4dd48f2c79d515d509a0cbe9efb0a197f44",
"target": {
"file": "drivers/scsi/qla2xxx/qla_os.c"
},
"signature_version": "v1",
"deprecated": false,
"digest": {
"threshold": 0.9,
"line_hashes": [
"45233518202922214785529128942654084545",
"178522554248499395014383142303535997908",
"95511220479955383713263017412774169946",
"175768474507867249249924376220051434141"
]
},
"signature_type": "Line",
"id": "CVE-2023-53696-ec033816"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@44374911ac63f769c442f56fdfadea673c5f4425",
"target": {
"file": "drivers/scsi/qla2xxx/qla_os.c",
"function": "qla2x00_probe_one"
},
"signature_version": "v1",
"deprecated": false,
"digest": {
"function_hash": "260817266580786216522879435011534885398",
"length": 23025.0
},
"signature_type": "Function",
"id": "CVE-2023-53696-eff10287"
},
{
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@ae73c4dd48f2c79d515d509a0cbe9efb0a197f44",
"target": {
"file": "drivers/scsi/qla2xxx/qla_os.c",
"function": "qla2x00_probe_one"
},
"signature_version": "v1",
"deprecated": false,
"digest": {
"function_hash": "324756330989577643340321088100674526792",
"length": 22941.0
},
"signature_type": "Function",
"id": "CVE-2023-53696-f5307b49"
}
]