AZL-71918

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-71918.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-71918

Upstream

CVE-2023-53424

Published

2025-09-18T16:15:46Z

Modified

2026-04-01T05:22:31.638004Z

Summary

CVE-2023-53424 affecting package kernel 5.15.200.1-1

Details

In the Linux kernel, the following vulnerability has been resolved:

clk: mediatek: fix of_iomap memory leak

Smatch reports: drivers/clk/mediatek/clk-mtk.c:583 mtkclksimpleprobe() warn: 'base' from ofiomap() not released on lines: 496.

This problem was also found in linux-next. In mtkclksimpleprobe(), base is not released when handling errors if clkdata is not existed, which may cause a leak. So free_base should be added here to release base.

References

https://nvd.nist.gov/vuln/detail/CVE-2023-53424

Affected packages

Azure Linux:2 / kernel

Package

Name: kernel
Purl: pkg:rpm/azure-linux/kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

5.15.200.1-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-71918.json"