{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2023-54190","assignerOrgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","state":"PUBLISHED","assignerShortName":"Linux","dateReserved":"2025-12-30T12:06:44.498Z","datePublished":"2025-12-30T12:08:58.605Z","dateUpdated":"2026-05-11T19:57:12.488Z"},"containers":{"cna":{"providerMetadata":{"orgId":"416baaa9-dc9f-4396-8d5f-8c081fb06d67","shortName":"Linux","dateUpdated":"2026-05-11T19:57:12.488Z"},"descriptions":[{"lang":"en","value":"In the Linux kernel, the following vulnerability has been resolved:\n\nleds: led-core: Fix refcount leak in of_led_get()\n\nclass_find_device_by_of_node() calls class_find_device(), it will take\nthe reference, use the put_device() to drop the reference when not need\nanymore."}],"affected":[{"product":"Linux","vendor":"Linux","defaultStatus":"unaffected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/leds/led-class.c"],"versions":[{"version":"699a8c7c4bd376aee4808e6272188319e900c8af","lessThan":"1d6101d9222e1ca8c01b3fa9ebf0dcf7bcd82564","status":"affected","versionType":"git"},{"version":"699a8c7c4bd376aee4808e6272188319e900c8af","lessThan":"690efcb5827c3bacbf1de90cd14907b91bf8cb7b","status":"affected","versionType":"git"},{"version":"699a8c7c4bd376aee4808e6272188319e900c8af","lessThan":"d880981b82223f9bf128dfdd2424abb0c658f345","status":"affected","versionType":"git"},{"version":"699a8c7c4bd376aee4808e6272188319e900c8af","lessThan":"ddf3e82164afd9381b1d52c9f00b3878f7b6d308","status":"affected","versionType":"git"},{"version":"699a8c7c4bd376aee4808e6272188319e900c8af","lessThan":"da1afe8e6099980fe1e2fd7436dca284af9d3f29","status":"affected","versionType":"git"}]},{"product":"Linux","vendor":"Linux","defaultStatus":"affected","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","programFiles":["drivers/leds/led-class.c"],"versions":[{"version":"5.6","status":"affected"},{"version":"0","lessThan":"5.6","status":"unaffected","versionType":"semver"},{"version":"5.10.173","lessThanOrEqual":"5.10.*","status":"unaffected","versionType":"semver"},{"version":"5.15.99","lessThanOrEqual":"5.15.*","status":"unaffected","versionType":"semver"},{"version":"6.1.16","lessThanOrEqual":"6.1.*","status":"unaffected","versionType":"semver"},{"version":"6.2.3","lessThanOrEqual":"6.2.*","status":"unaffected","versionType":"semver"},{"version":"6.3","lessThanOrEqual":"*","status":"unaffected","versionType":"original_commit_for_fix"}]}],"cpeApplicability":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6","versionEndExcluding":"5.10.173"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6","versionEndExcluding":"5.15.99"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6","versionEndExcluding":"6.1.16"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6","versionEndExcluding":"6.2.3"},{"vulnerable":true,"criteria":"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*","versionStartIncluding":"5.6","versionEndExcluding":"6.3"}]}]}],"references":[{"url":"https://git.kernel.org/stable/c/1d6101d9222e1ca8c01b3fa9ebf0dcf7bcd82564"},{"url":"https://git.kernel.org/stable/c/690efcb5827c3bacbf1de90cd14907b91bf8cb7b"},{"url":"https://git.kernel.org/stable/c/d880981b82223f9bf128dfdd2424abb0c658f345"},{"url":"https://git.kernel.org/stable/c/ddf3e82164afd9381b1d52c9f00b3878f7b6d308"},{"url":"https://git.kernel.org/stable/c/da1afe8e6099980fe1e2fd7436dca284af9d3f29"}],"title":"leds: led-core: Fix refcount leak in of_led_get()","x_generator":{"engine":"bippy-1.2.0"}}}}