CVE-2023-53388

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-53388
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53388.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-53388
Downstream
Related
Published
2025-09-18T13:33:31.385Z
Modified
2026-04-02T09:44:07.352887Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
drm/mediatek: Clean dangling pointer on bind error path
Details

In the Linux kernel, the following vulnerability has been resolved:

drm/mediatek: Clean dangling pointer on bind error path

mtkdrmbind() can fail, in which case drmdevput() is called, destroying the drmdevice object. However a pointer to it was still being held in the private object, and that pointer would be passed along to DRM in mtkdrmsysprepare() if a suspend were triggered at that point, resulting in a panic. Clean the pointer when destroying the object in the error path to prevent this from happening.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53388.json",
    "cna_assigner": "Linux"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
119f5173628aa7a0c3cf9db83460d40709e8241d
Fixed
9a48f99aa7bea15e0b1d8b0040c46b4792eddf3b
Fixed
a161f1d92aabb3b8463f752bdc3474dc3a5ec0e5
Fixed
6a89ddee1686a8872384aaa9f0bcfa6b675acd86
Fixed
49cf87919daeeeeeb9e924c39bdd9203af434461
Fixed
7b551a501fa714890e55bae73efede1185728d72
Fixed
f3887c771576c5d740c5c5b8bf654a8ab8020b7d
Fixed
36aa8c61af55675ed967900fbe5deb32d776f051

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53388.json"