CVE-2023-54111 - Vulnerability Details

- pinctrl: rockchip: Fix refcount leak in rockchip_pinctrl_parse_groups

Description

In the Linux kernel, the following vulnerability has been resolved:

pinctrl: rockchip: Fix refcount leak in rockchip_pinctrl_parse_groups

of_find_node_by_phandle() returns a node pointer with refcount incremented,
We should use of_node_put() on it when not needed anymore.
Add missing of_node_put() to avoid refcount leak.

Published: 2025-12-24

Score: n/a

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Linux

unaffected

Version	Status	Constraints
`d3e5116119bd02ea7716bbe04b39c21bba4bcf42`	affected	< aa017ab5716c9157c65fdce061c4a4a568af53a8
`d3e5116119bd02ea7716bbe04b39c21bba4bcf42`	affected	< 5868013522297bf628eee4322d99d6d4de4f308e
`d3e5116119bd02ea7716bbe04b39c21bba4bcf42`	affected	< 954a7a0011d94475f8ba5ceb77a5d11e01cf402f
`d3e5116119bd02ea7716bbe04b39c21bba4bcf42`	affected	< d562054a3a2eede3507a5461011ee82b671fcb88
`d3e5116119bd02ea7716bbe04b39c21bba4bcf42`	affected	< 0f735f232ff59863e0b6ebac0849d637e215a9c2
`d3e5116119bd02ea7716bbe04b39c21bba4bcf42`	affected	< dbef00ef4b9b98d15183340396e5df0fa7a860d8
`d3e5116119bd02ea7716bbe04b39c21bba4bcf42`	affected	< 3c40b34e3462aab12af3dba77d2e1602afc72e80
`d3e5116119bd02ea7716bbe04b39c21bba4bcf42`	affected	< c818ae563bf99457f02e8170aabd6b174f629f65

Linux

affected

Version	Status	Constraints
`3.11`	affected	—
`0`	unaffected	< 3.11
`4.14.308`	unaffected	≤ 4.14.*
`4.19.276`	unaffected	≤ 4.19.*
`5.4.270`	unaffected	≤ 5.4.*
`5.10.173`	unaffected	≤ 5.10.*
`5.15.99`	unaffected	≤ 5.15.*
`6.1.16`	unaffected	≤ 6.1.*
`6.2.3`	unaffected	≤ 6.2.*
`6.3`	unaffected	≤ *

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00047.

Key SSVC decision points have not yet been added.

References

Link	Providers
https://git.kernel.org/stable/c/0f735f232ff59863e0b6ebac0849d637e215a9c2
https://git.kernel.org/stable/c/3c40b34e3462aab12af3dba77d2e1602afc72e80
https://git.kernel.org/stable/c/5868013522297bf628eee4322d99d6d4de4f308e
https://git.kernel.org/stable/c/954a7a0011d94475f8ba5ceb77a5d11e01cf402f
https://git.kernel.org/stable/c/aa017ab5716c9157c65fdce061c4a4a568af53a8
https://git.kernel.org/stable/c/c818ae563bf99457f02e8170aabd6b174f629f65
https://git.kernel.org/stable/c/d562054a3a2eede3507a5461011ee82b671fcb88
https://git.kernel.org/stable/c/dbef00ef4b9b98d15183340396e5df0fa7a860d8
https://lore.kernel.org/linux-cve-announce/2025122413-CVE-2023-54111-de3c@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-54111
https://www.cve.org/CVERecord?id=CVE-2023-54111

History

Thu, 25 Dec 2025 00:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025122413-CVE-2023-54111-de3c@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2023-54111 https://www.cve.org/CVERecord?id=CVE-2023-54111

Wed, 24 Dec 2025 13:15:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: pinctrl: rockchip: Fix refcount leak in rockchip_pinctrl_parse_groups of_find_node_by_phandle() returns a node pointer with refcount incremented, We should use of_node_put() on it when not needed anymore. Add missing of_node_put() to avoid refcount leak.
Title		pinctrl: rockchip: Fix refcount leak in rockchip_pinctrl_parse_groups
First Time appeared		Linux Linux linux Kernel
CPEs		cpe:2.3:o:linux:linux_kernel::::::::
Vendors & Products		Linux Linux linux Kernel
References		https://git.kernel.org/stable/c/0f735f232ff59863e0b6ebac0849d637e215a9c2 https://git.kernel.org/stable/c/3c40b34e3462aab12af3dba77d2e1602afc72e80 https://git.kernel.org/stable/c/5868013522297bf628eee4322d99d6d4de4f308e https://git.kernel.org/stable/c/954a7a0011d94475f8ba5ceb77a5d11e01cf402f https://git.kernel.org/stable/c/aa017ab5716c9157c65fdce061c4a4a568af53a8 https://git.kernel.org/stable/c/c818ae563bf99457f02e8170aabd6b174f629f65 https://git.kernel.org/stable/c/d562054a3a2eede3507a5461011ee82b671fcb88 https://git.kernel.org/stable/c/dbef00ef4b9b98d15183340396e5df0fa7a860d8

Subscriptions

Linux Linux Kernel

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-12-24T13:06:34.187Z

Updated: 2026-05-11T19:55:41.312Z

Reserved: 2025-12-24T13:02:52.518Z

Link: CVE-2023-54111

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2025-12-24T13:16:13.000

Modified: 2026-04-15T00:35:42.020

Link: CVE-2023-54111

Redhat

Severity :

Publid Date: 2025-12-24T00:00:00Z

Links: CVE-2023-54111 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

No weakness.

Tracking

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object