CVE-2023-53341
- Source
- https://cve.org/CVERecord?id=CVE-2023-53341
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53341.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-53341
- Downstream
- Published
- 2025-09-17T14:56:34.671Z
- Modified
- 2026-04-02T09:44:02.204837Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- of/fdt: run soc memory setup when early_init_dt_scan_memory fails
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
of/fdt: run soc memory setup when earlyinitdtscanmemory fails
If memory has been found earlyinitdtscanmemory now returns 1. If it hasn't found any memory it will return 0, allowing other memory setup mechanisms to carry on.
Previously earlyinitdtscanmemory always returned 0 without distinguishing between any kind of memory setup being done or not. Any code path after the earlyinitdtscan memory call in the ramips platmemsetup code wouldn't be executed anymore. Making earlyinitdtscan_memory the only way to initialize the memory.
Some boards, including my mt7621 based Cudy X6 board, depend on memory initialization being done via the socinfo.memdetect function pointer. Those wouldn't be able to obtain memory and panic the kernel during early bootup with the message "earlyinitdtallocmemory_arch: Failed to allocate 12416 bytes align=0x40".
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53341.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/04836fc5b720dfa32ff781383d84f63019abf9b9
- https://git.kernel.org/stable/c/2a12187d5853d9fd5102278cecef7dac7c8ce7ea
- https://git.kernel.org/stable/c/c4849f18185fd4e93b04cd45552f8d68c0240e21
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53341.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-53341
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git