CVE-2023-53594

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> driver core: fix resource leak in device_add()<br /> <br /> When calling kobject_add() failed in device_add(), it will call<br /> cleanup_glue_dir() to free resource. But in kobject_add(),<br /> dev-&gt;kobj.parent has been set to NULL. This will cause resource leak.<br /> <br /> The process is as follows:<br /> device_add()<br /> get_device_parent()<br /> class_dir_create_and_add()<br /> kobject_add() //kobject_get()<br /> ...<br /> dev-&gt;kobj.parent = kobj;<br /> ...<br /> kobject_add() //failed, but set dev-&gt;kobj.parent = NULL<br /> ...<br /> glue_dir = get_glue_dir(dev) //glue_dir = NULL, and goto<br /> //"Error" label<br /> ...<br /> cleanup_glue_dir() //becaues glue_dir is NULL, not call<br /> //kobject_put()<br /> <br /> The preceding problem may cause insmod mac80211_hwsim.ko to failed.<br /> sysfs: cannot create duplicate filename &amp;#39;/devices/virtual/mac80211_hwsim&amp;#39;<br /> Call Trace:<br /> <br /> dump_stack_lvl+0x8e/0xd1<br /> sysfs_warn_dup.cold+0x1c/0x29<br /> sysfs_create_dir_ns+0x224/0x280<br /> kobject_add_internal+0x2aa/0x880<br /> kobject_add+0x135/0x1a0<br /> get_device_parent+0x3d7/0x590<br /> device_add+0x2aa/0x1cb0<br /> device_create_groups_vargs+0x1eb/0x260<br /> device_create+0xdc/0x110<br /> mac80211_hwsim_new_radio+0x31e/0x4790 [mac80211_hwsim]<br /> init_mac80211_hwsim+0x48d/0x1000 [mac80211_hwsim]<br /> do_one_initcall+0x10f/0x630<br /> do_init_module+0x19f/0x5e0<br /> load_module+0x64b7/0x6eb0<br /> __do_sys_finit_module+0x140/0x200<br /> do_syscall_64+0x35/0x80<br /> entry_SYSCALL_64_after_hwframe+0x46/0xb0<br /> <br /> kobject_add_internal failed for mac80211_hwsim with -EEXIST, don&amp;#39;t try to<br /> register things with the same name in the same directory.