In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: hcisync: fix memory leak in hciupdateadvdata()
When hcicmdsyncqueue() failed in hciupdateadvdata(), instptr is not freed, which will cause memory leak, convert to use ERRPTR/PTR_ERR to pass the instance to callback so no memory needs to be allocated.
[ { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1ed8b37cbaf14574c779064ef1372af62e8ba6aa", "signature_version": "v1", "target": { "file": "net/bluetooth/hci_sync.c" }, "digest": { "line_hashes": [ "202815898202978762843469797874913659547", "274501860284484592339610675188501189909", "5408788565230365070124862574626839476", "54005360570043603420821281906571351531", "175558332070711879737369394027591613925", "137330245161898565634799067524434583242", "265963809771173924977317490701228863136", "71055919660155820238773974863546857623", "189372608088474868148125324485459466991", "42853647185899406025794434133692194833", "260071828040178813386721134618433818702", "10249578624698504430307933272584216141" ], "threshold": 0.9 }, "deprecated": false, "signature_type": "Line", "id": "CVE-2023-53017-1b9a7ec3" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1ed8b37cbaf14574c779064ef1372af62e8ba6aa", "signature_version": "v1", "target": { "file": "net/bluetooth/hci_sync.c", "function": "_update_adv_data_sync" }, "digest": { "length": 148.0, "function_hash": "4127958160027686316590572849265613507" }, "deprecated": false, "signature_type": "Function", "id": "CVE-2023-53017-cdc0d7c6" }, { "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@1ed8b37cbaf14574c779064ef1372af62e8ba6aa", "signature_version": "v1", "target": { "file": "net/bluetooth/hci_sync.c", "function": "hci_update_adv_data" }, "digest": { "length": 206.0, "function_hash": "236654080121170311934838027079149596591" }, "deprecated": false, "signature_type": "Function", "id": "CVE-2023-53017-f506a633" } ]