Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix resource leaks in vdec_msg_queue_init() If we encounter any error in the vdec_msg_queue_init() then we need to set "msg_queue->wdma_addr.size = 0;". Normally, this is done inside the vdec_msg_queue_deinit() function. However, if the first call to allocate &msg_queue->wdma_addr fails, then the vdec_msg_queue_deinit() function is a no-op. For that situation, just set the size to zero explicitly and return. There were two other error paths which did not clean up before returning. Change those error paths to goto mem_alloc_err.
References
- https://git.kernel.org/stable/c/451dc187cadd47771e5d9434fe220fad7be84057
- https://git.kernel.org/stable/c/858322c409e0aba8f70810d23f35c482744f007c
- https://git.kernel.org/stable/c/b7dbc27301f560c3b915235c53383155b3512083
- https://git.kernel.org/stable/c/cf10b0bb503c974ba049d6f888b21178be20a962
FAQ
What is CVE-2023-54143?
CVE-2023-54143 is a documented vulnerability. In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix resource leaks in vdec_msg_queue_init() If we encounter any error in the vdec_msg_queue_init() then w...
How severe is CVE-2023-54143?
CVSS scoring is not yet available for CVE-2023-54143. Check NVD for updates.
Is there a patch for CVE-2023-54143?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.