CVE-2023-53303 – net: microchip: vcap api: Fix possible memory leak for vcap_dup_rule()

CVE ID : CVE-2023-53303

Published : Sept. 16, 2025, 8:11 a.m. | 44 minutes ago

Description : In the Linux kernel, the following vulnerability has been resolved:

net: microchip: vcap api: Fix possible memory leak for vcap_dup_rule()

Inject fault When select CONFIG_VCAP_KUNIT_TEST, the below memory leak
occurs. If kzalloc() for duprule succeeds, but the following
kmemdup() fails, the duprule, ckf and caf memory will be leaked. So kfree
them in the error path.

unreferenced object 0xffff122744c50600 (size 192):
comm “kunit_try_catch”, pid 346, jiffies 4294896122 (age 911.812s)
hex dump (first 32 bytes):
10 27 00 00 04 00 00 00 1e 00 00 00 2c 01 00 00 .’……….,…
00 00 00 00 00 00 00 00 18 06 c5 44 27 12 ff ff ………..D’…
backtrace:
[] __kmem_cache_alloc_node+0x274/0x2f8
[] kmalloc_trace+0x38/0x88
[] vcap_dup_rule+0x50/0x460
[] vcap_add_rule+0x8cc/0x1038
[] test_vcap_xn_rule_creator.constprop.0.isra.0+0x238/0x494
[] vcap_api_rule_remove_in_front_test+0x1ac/0x698
[] kunit_try_run_case+0xe0/0x20c
[] kunit_generic_run_threadfn_adapter+0x50/0x94
[] kthread+0x2e8/0x374
[] ret_from_fork+0x10/0x20

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…