CVE-2023-53693

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> USB: gadget: Fix the memory leak in raw_gadget driver<br /> <br /> Currently, increasing raw_dev-&gt;count happens before invoke the<br /> raw_queue_event(), if the raw_queue_event() return error, invoke<br /> raw_release() will not trigger the dev_free() to be called.<br /> <br /> [ 268.905865][ T5067] raw-gadget.0 gadget.0: failed to queue event<br /> [ 268.912053][ T5067] udc dummy_udc.0: failed to start USB Raw Gadget: -12<br /> [ 268.918885][ T5067] raw-gadget.0: probe of gadget.0 failed with error -12<br /> [ 268.925956][ T5067] UDC core: USB Raw Gadget: couldn&amp;#39;t find an available UDC or it&amp;#39;s busy<br /> [ 268.934657][ T5067] misc raw-gadget: fail, usb_gadget_register_driver returned -16<br /> <br /> BUG: memory leak<br /> <br /> [] kmalloc_trace+0x24/0x90 mm/slab_common.c:1076<br /> [] kmalloc include/linux/slab.h:582 [inline]<br /> [] kzalloc include/linux/slab.h:703 [inline]<br /> [] dev_new drivers/usb/gadget/legacy/raw_gadget.c:191 [inline]<br /> [] raw_open+0x45/0x110 drivers/usb/gadget/legacy/raw_gadget.c:385<br /> [] misc_open+0x1a9/0x1f0 drivers/char/misc.c:165<br /> <br /> [] kmalloc_trace+0x24/0x90 mm/slab_common.c:1076<br /> [] kmalloc include/linux/slab.h:582 [inline]<br /> [] raw_ioctl_init+0xdf/0x410 drivers/usb/gadget/legacy/raw_gadget.c:460<br /> [] raw_ioctl+0x5f9/0x1120 drivers/usb/gadget/legacy/raw_gadget.c:1250<br /> [] vfs_ioctl fs/ioctl.c:51 [inline]<br /> <br /> [] kmalloc_trace+0x24/0x90 mm/slab_common.c:1076<br /> [] kmalloc include/linux/slab.h:582 [inline]<br /> [] kzalloc include/linux/slab.h:703 [inline]<br /> [] dummy_alloc_request+0x5a/0xe0 drivers/usb/gadget/udc/dummy_hcd.c:665<br /> [] usb_ep_alloc_request+0x22/0xd0 drivers/usb/gadget/udc/core.c:196<br /> [] gadget_bind+0x6d/0x370 drivers/usb/gadget/legacy/raw_gadget.c:292<br /> <br /> This commit therefore invoke kref_get() under the condition that<br /> raw_queue_event() return success.