CVE-2023-53479

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2023-53479
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53479.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-53479
Downstream
Related
Published
2025-10-01T11:42:47.987Z
Modified
2026-02-24T07:35:46.275431Z
Summary
cxl/acpi: Fix a use-after-free in cxl_parse_cfmws()
Details

In the Linux kernel, the following vulnerability has been resolved:

cxl/acpi: Fix a use-after-free in cxlparsecfmws()

KASAN and KFENCE detected an user-after-free in the CXL driver. This happens in the cxldecoderadd() fail path. KASAN prints the following error:

BUG: KASAN: slab-use-after-free in cxlparsecfmws (drivers/cxl/acpi.c:299)

This happens in cxlparsecfmws(), where put_device() is called, releasing cxld, which is accessed later.

Use the local variables in the deverr() instead of pointing to the released memory. Since the deverr() is printing a resource, change the open coded print format to use the %pr format specifier.

Database specific 
{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53479.json"
}
References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
e50fe01e1f2a4aba2275edee7d5c77ac87674ddb
Fixed
748fadc08bcbdaf573b34d9784bb3dbd87441dbf
Fixed
316db489647b8ddc381682597e89787eac61a278
Fixed
4cf67d3cc9994a59cf77bb9c0ccf9007fe916afe

Affected versions

v5.*
v5.19
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.4.1
v6.4.2
v6.4.3
v6.4.4
v6.4.5
v6.4.6
v6.4.7
v6.5-rc1

Database specific

vanir_signatures 
[
    {
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "120698868665316790273522268802156100323",
                "35496899835627931822791992553216476438",
                "103334706423949825005647293897863047332",
                "120738386806035630271412119849496800345",
                "255872588080819187324532563455674059053"
            ]
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@748fadc08bcbdaf573b34d9784bb3dbd87441dbf",
        "deprecated": false,
        "id": "CVE-2023-53479-4ceec96e",
        "signature_type": "Line",
        "target": {
            "file": "drivers/cxl/acpi.c"
        },
        "signature_version": "v1"
    },
    {
        "digest": {
            "length": 2094.0,
            "function_hash": "84666284625403518193813830234838428558"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@748fadc08bcbdaf573b34d9784bb3dbd87441dbf",
        "deprecated": false,
        "id": "CVE-2023-53479-867bfd98",
        "signature_type": "Function",
        "target": {
            "function": "cxl_parse_cfmws",
            "file": "drivers/cxl/acpi.c"
        },
        "signature_version": "v1"
    },
    {
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "120698868665316790273522268802156100323",
                "35496899835627931822791992553216476438",
                "103334706423949825005647293897863047332",
                "120738386806035630271412119849496800345",
                "255872588080819187324532563455674059053"
            ]
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@316db489647b8ddc381682597e89787eac61a278",
        "deprecated": false,
        "id": "CVE-2023-53479-9a2b5d8c",
        "signature_type": "Line",
        "target": {
            "file": "drivers/cxl/acpi.c"
        },
        "signature_version": "v1"
    },
    {
        "digest": {
            "length": 2637.0,
            "function_hash": "297573108531663830760036613433465956839"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4cf67d3cc9994a59cf77bb9c0ccf9007fe916afe",
        "deprecated": false,
        "id": "CVE-2023-53479-a3ab20b1",
        "signature_type": "Function",
        "target": {
            "function": "cxl_parse_cfmws",
            "file": "drivers/cxl/acpi.c"
        },
        "signature_version": "v1"
    },
    {
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "120698868665316790273522268802156100323",
                "35496899835627931822791992553216476438",
                "103334706423949825005647293897863047332",
                "120738386806035630271412119849496800345",
                "255872588080819187324532563455674059053"
            ]
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@4cf67d3cc9994a59cf77bb9c0ccf9007fe916afe",
        "deprecated": false,
        "id": "CVE-2023-53479-cb207636",
        "signature_type": "Line",
        "target": {
            "file": "drivers/cxl/acpi.c"
        },
        "signature_version": "v1"
    },
    {
        "digest": {
            "length": 2634.0,
            "function_hash": "6883124289378032269995015146049890405"
        },
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@316db489647b8ddc381682597e89787eac61a278",
        "deprecated": false,
        "id": "CVE-2023-53479-fe115889",
        "signature_type": "Function",
        "target": {
            "function": "cxl_parse_cfmws",
            "file": "drivers/cxl/acpi.c"
        },
        "signature_version": "v1"
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53479.json"

Git / github.com/gregkh/linux

Affected ranges

Type
GIT
Repo
https://github.com/gregkh/linux
Events
Introduced
4fe89d07dcc2804c8b562f6c7896a45643d34b2f
Fixed
52a953d0934b17a88f403b4135eb3cdf83d19f91
Introduced
c9c3395d5e3dcc6daee66c6908354d47bf98cb0c
Fixed
714a286bf9ee3740260c61471ed72d10bd17336a

Affected versions

v6.*
v6.0
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.39
v6.1.4
v6.1.40
v6.1.41
v6.1.42
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.4.1
v6.4.2
v6.4.3
v6.4.4
v6.4.5
v6.4.6
v6.4.7

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53479.json"