CVE-2023-53802
- Source
- https://cve.org/CVERecord?id=CVE-2023-53802
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53802.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-53802
- Downstream
- Related
- Published
- 2025-12-09T00:00:58.582Z
- Modified
- 2026-03-27T09:13:15.343643Z
- Summary
- wifi: ath9k: htc_hst: free skb in ath9k_htc_rx_msg() if there is no callback function
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
wifi: ath9k: htchst: free skb in ath9khtcrxmsg() if there is no callback function
It is stated that ath9khtcrx_msg() either frees the provided skb or passes its management to another callback function. However, the skb is not freed in case there is no another callback function, and Syzkaller was able to cause a memory leak. Also minor comment fix.
Found by Linux Verification Center (linuxtesting.org) with Syzkaller.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53802.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/564bc2222bf50eb6cdee715a5431bf4dc9f923c1
- https://git.kernel.org/stable/c/5a84e51f72580fc70066b03f3dac38421e702a0b
- https://git.kernel.org/stable/c/68171c006c8645a3e0293a6c3e6037c6538ac1c5
- https://git.kernel.org/stable/c/9b25e3985477ac3f02eca5fc1e0cc6850a3f7e69
- https://git.kernel.org/stable/c/b11f95f65cc52ee3a756e6f6a88df37a203e25bd
- https://git.kernel.org/stable/c/bbfababb4f899fe1556eac195f9774b6fe675fb6
- https://git.kernel.org/stable/c/c0c0614f143b568cd0e9525d53cf12e5dcd11987
- https://git.kernel.org/stable/c/ec246dfe006b2a8f36353f7489e4f525114db9a5
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53802.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-53802
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedfb9987d0f748c983bb795a86f47522313f701a08Fixedb11f95f65cc52ee3a756e6f6a88df37a203e25bdFixed68171c006c8645a3e0293a6c3e6037c6538ac1c5Fixed564bc2222bf50eb6cdee715a5431bf4dc9f923c1Fixedec246dfe006b2a8f36353f7489e4f525114db9a5Fixedc0c0614f143b568cd0e9525d53cf12e5dcd11987Fixed5a84e51f72580fc70066b03f3dac38421e702a0bFixedbbfababb4f899fe1556eac195f9774b6fe675fb6Fixed9b25e3985477ac3f02eca5fc1e0cc6850a3f7e69
Linux / Kernel
Package
- Name
- Kernel
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced2.6.35Fixed4.14.308
- Type
- ECOSYSTEM
- Events
-
Introduced4.15.0Fixed4.19.276
- Type
- ECOSYSTEM
- Events
-
Introduced4.20.0Fixed5.4.235
- Type
- ECOSYSTEM
- Events
-
Introduced5.5.0Fixed5.10.173
- Type
- ECOSYSTEM
- Events
-
Introduced5.11.0Fixed5.15.99
- Type
- ECOSYSTEM
- Events
-
Introduced5.16.0Fixed6.1.16
- Type
- ECOSYSTEM
- Events
-
Introduced6.2.0Fixed6.2.3