CVE-2023-53459

UNKNOWN 0.0

HID: mcp-2221: prevent UAF in delayed work

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: HID: mcp-2221: prevent UAF in delayed work If the device is plugged/unplugged without giving time for mcp_init_work() to complete, we might kick in the devm free code path and thus have unavailable struct mcp_2221 while in delayed work. Canceling the delayed_work item is enough to solve the issue, because cancel_delayed_work_sync will prevent the work item to requeue itself.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Oct 1, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

960f9df7c620ecb6030aff1d9a6c3d67598b8290 < 5dc297652dbc557eba7ca7d6a4c5f1940dffffb1 960f9df7c620ecb6030aff1d9a6c3d67598b8290 < 47e91fdfa511139f2549687edb0d8649b123227b

Linux / Linux

6.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/5dc297652dbc557eba7ca7d6a4c5f1940dffffb1 git.kernel.org: https://git.kernel.org/stable/c/47e91fdfa511139f2549687edb0d8649b123227b