#VU120656 Memory leak in Linux kernel - CVE-2023-54183
Published: December 30, 2025 / Updated: December 31, 2025
Vulnerability identifier: #VU120656
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2023-54183
CWE-ID: CWE-401
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vulnerable software:
Linux kernel
Linux kernel
Software vendor:
Linux Foundation
Linux Foundation
Description
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to memory leak within the v4l2_fwnode_parse_link() function in drivers/media/v4l2-core/v4l2-fwnode.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's repository.
External links
- https://git.kernel.org/stable/c/2342942331e1f034ff58f293e10d0d9b7581601f
- https://git.kernel.org/stable/c/25afb3e03bf8ab02567af4b6ffbfd6250a91a9f8
- https://git.kernel.org/stable/c/4bc5ffaf8ac4f3e7a1fcd10a0a0e7b022b694877
- https://git.kernel.org/stable/c/caf058833b6f3fe7beabf738110f79bb987c8fff
- https://git.kernel.org/stable/c/d7b13edd4cb4bfa335b6008ab867ac28582d3e5c
- https://git.kernel.org/stable/c/d8a8f75fce049bdb3144b607deefe51e996b9660
- https://git.kernel.org/stable/c/e8a1cd87bb9fa3149ee112ecb8058908dc9b520e
- https://git.kernel.org/stable/c/ed1696f7f92e8404940d51dec80a123aa18163a8
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.4.16