Description

In the Linux kernel, the following vulnerability has been resolved: phy: tegra: xusb: Clear the driver reference in usb-phy dev For the dual-role port, it will assign the phy dev to usb-phy dev and use the port dev driver as the dev driver of usb-phy. When we try to destroy the port dev, it will destroy its dev driver as well. But we did not remove the reference from usb-phy dev. This might cause the use-after-free issue in KASAN.

INFO

Published Date :

2025-12-24T13:06:14.771Z

Last Modified :

2025-12-24T13:06:14.771Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-54083 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-54083.

URL Resource
https://git.kernel.org/stable/c/238edc04ddb9d272b38f5419bcd419ad3b92b91b cve-icon cve-icon
https://git.kernel.org/stable/c/82187460347ad58fd6b06d2883da73c3f2df9631 cve-icon cve-icon
https://git.kernel.org/stable/c/b6a107c52073496d2e5d2837915f59fb3103832f cve-icon cve-icon
https://git.kernel.org/stable/c/b84998a407a882991916b1a61d987c400d8a0ce6 cve-icon cve-icon
https://git.kernel.org/stable/c/c0c2fcb1325d0d4f3b322b5ee49385f8eca2560d cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025122404-CVE-2023-54083-fc0e@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-54083 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-54083 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact