{"id":"CVE-2023-54044","summary":"spmi: Add a check for remove callback when removing a SPMI driver","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nspmi: Add a check for remove callback when removing a SPMI driver\n\nWhen removing a SPMI driver, there can be a crash due to NULL pointer\ndereference if it does not have a remove callback defined. This is\none such call trace observed when removing the QCOM SPMI PMIC driver:\n\n dump_backtrace.cfi_jt+0x0/0x8\n dump_stack_lvl+0xd8/0x16c\n panic+0x188/0x498\n __cfi_slowpath+0x0/0x214\n __cfi_slowpath+0x1dc/0x214\n spmi_drv_remove+0x16c/0x1e0\n device_release_driver_internal+0x468/0x79c\n driver_detach+0x11c/0x1a0\n bus_remove_driver+0xc4/0x124\n driver_unregister+0x58/0x84\n cleanup_module+0x1c/0xc24 [qcom_spmi_pmic]\n __do_sys_delete_module+0x3ec/0x53c\n __arm64_sys_delete_module+0x18/0x28\n el0_svc_common+0xdc/0x294\n el0_svc+0x38/0x9c\n el0_sync_handler+0x8c/0xf0\n el0_sync+0x1b4/0x1c0\n\nIf a driver has all its resources allocated through devm_() APIs and\ndoes not need any other explicit cleanup, it would not require a\nremove callback to be defined. Hence, add a check for remove callback\npresence before calling it when removing a SPMI driver.","modified":"2026-04-02T09:45:32.022983Z","published":"2025-12-24T12:22:56.072Z","related":["SUSE-SU-2026:0263-1","SUSE-SU-2026:0317-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54044.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/0f3ef30c1c05502f5de3b73b3715d5994845c1b4"},{"type":"WEB","url":"https://git.kernel.org/stable/c/428cc252701d6864151f3a296ffc23e1e49a7408"},{"type":"WEB","url":"https://git.kernel.org/stable/c/54dda732225555dc6d660e95793c54a0a44b612c"},{"type":"WEB","url":"https://git.kernel.org/stable/c/699949219e35fe29fd42ccf8cd92c989c3d15109"},{"type":"WEB","url":"https://git.kernel.org/stable/c/af763c29b9e7040fedd0077bca053b101438a3a4"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b56eef3e16d888883fefab47425036de80dd38fc"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b95a69214daea4aab1c8bad96571d988a62e2c97"},{"type":"WEB","url":"https://git.kernel.org/stable/c/c45ab3ab9c371c9ac22bbe1217e5abb2e55a3d4b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ee0b6146317a98bfec848d7bde5586beb245a38f"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/54xxx/CVE-2023-54044.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-54044"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"5a86bf343976b9c8ab2f240bc866451fa67e5573"},{"fixed":"b95a69214daea4aab1c8bad96571d988a62e2c97"},{"fixed":"699949219e35fe29fd42ccf8cd92c989c3d15109"},{"fixed":"54dda732225555dc6d660e95793c54a0a44b612c"},{"fixed":"c45ab3ab9c371c9ac22bbe1217e5abb2e55a3d4b"},{"fixed":"ee0b6146317a98bfec848d7bde5586beb245a38f"},{"fixed":"428cc252701d6864151f3a296ffc23e1e49a7408"},{"fixed":"af763c29b9e7040fedd0077bca053b101438a3a4"},{"fixed":"0f3ef30c1c05502f5de3b73b3715d5994845c1b4"},{"fixed":"b56eef3e16d888883fefab47425036de80dd38fc"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-54044.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"3.15.0"},{"fixed":"4.14.315"}]},{"type":"ECOSYSTEM","events":[{"introduced":"4.15.0"},{"fixed":"4.19.283"}]},{"type":"ECOSYSTEM","events":[{"introduced":"4.20.0"},{"fixed":"5.4.243"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.5.0"},{"fixed":"5.10.180"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.11.0"},{"fixed":"5.15.111"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.28"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.2.15"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.3.0"},{"fixed":"6.3.2"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-54044.json"}}],"schema_version":"1.7.5"}