CVE-2023-53177

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-53177
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53177.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-53177
Downstream
Related
Published
2025-09-15T14:04:20.626Z
Modified
2026-02-21T05:34:51.527547Z
Summary
media: hi846: fix usage of pm_runtime_get_if_in_use()
Details

In the Linux kernel, the following vulnerability has been resolved:

media: hi846: fix usage of pmruntimegetifin_use()

pmruntimegetifin_use() does not only return nonzero values when the device is in use, it can return a negative errno too.

And especially during resuming from system suspend, when runtime pm is not yet up again, -EAGAIN is being returned, so the subsequent pmruntimeput() call results in a refcount underflow.

Fix system-resume by handling -EAGAIN of pmruntimegetifin_use().

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53177.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
e8c0882685f9152f0d729664a12bcbe749cb7736
Fixed
42ec6269f98edd915ee37da3c6456bb6243ea56a
Fixed
c5dcd7a19f1ed8fe98384f3a9444c7c53befd74e
Fixed
04fc06f6dc1592ed5d675311ac50d8fba5db62ab

Affected versions

v5.*
v5.15
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.4
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.4.1
v6.4.2
v6.4.3

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53177.json"
vanir_signatures 
[
    {
        "id": "CVE-2023-53177-011ac0ba",
        "target": {
            "file": "drivers/media/i2c/hi846.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c5dcd7a19f1ed8fe98384f3a9444c7c53befd74e",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "46434260532382618380156840340394648389",
                "172131208115774510826857539608430387193",
                "282155573913347984475770523844499052712",
                "5841365542677966921978613930692727284"
            ]
        },
        "signature_type": "Line"
    },
    {
        "id": "CVE-2023-53177-0fb5c7a7",
        "target": {
            "function": "hi846_set_ctrl",
            "file": "drivers/media/i2c/hi846.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c5dcd7a19f1ed8fe98384f3a9444c7c53befd74e",
        "digest": {
            "function_hash": "163090384838840683035267359379935949768",
            "length": 1324.0
        },
        "signature_type": "Function"
    },
    {
        "id": "CVE-2023-53177-461ca090",
        "target": {
            "function": "hi846_set_ctrl",
            "file": "drivers/media/i2c/hi846.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@04fc06f6dc1592ed5d675311ac50d8fba5db62ab",
        "digest": {
            "function_hash": "163090384838840683035267359379935949768",
            "length": 1324.0
        },
        "signature_type": "Function"
    },
    {
        "id": "CVE-2023-53177-4bc68f5b",
        "target": {
            "file": "drivers/media/i2c/hi846.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@42ec6269f98edd915ee37da3c6456bb6243ea56a",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "46434260532382618380156840340394648389",
                "172131208115774510826857539608430387193",
                "282155573913347984475770523844499052712",
                "5841365542677966921978613930692727284"
            ]
        },
        "signature_type": "Line"
    },
    {
        "id": "CVE-2023-53177-6f1b0ba7",
        "target": {
            "file": "drivers/media/i2c/hi846.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@04fc06f6dc1592ed5d675311ac50d8fba5db62ab",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "46434260532382618380156840340394648389",
                "172131208115774510826857539608430387193",
                "282155573913347984475770523844499052712",
                "5841365542677966921978613930692727284"
            ]
        },
        "signature_type": "Line"
    },
    {
        "id": "CVE-2023-53177-d4f23a9d",
        "target": {
            "function": "hi846_set_ctrl",
            "file": "drivers/media/i2c/hi846.c"
        },
        "signature_version": "v1",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@42ec6269f98edd915ee37da3c6456bb6243ea56a",
        "digest": {
            "function_hash": "163090384838840683035267359379935949768",
            "length": 1324.0
        },
        "signature_type": "Function"
    }
]

Git / github.com/gregkh/linux

Affected ranges

Type
GIT
Repo
https://github.com/gregkh/linux
Events
Introduced
c9c3395d5e3dcc6daee66c6908354d47bf98cb0c
Fixed
62813c2d2a3617a289397582b2db3db9f97111ee
Introduced
df0cc57e057f18e44dac8e6c18aba47ab53202f9
Fixed
a456e17438819ed77f63d16926f96101ca215f09

Affected versions

v5.*
v5.16
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.4
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.2
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.4.1
v6.4.2
v6.4.3

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53177.json"