-

CVE-2023-53357

EPSS 0.03%
Veröffentlicht 17.09.2025 14:56:47
Zuletzt bearbeitet 18.09.2025 13:43:34
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
Teams Watchlist Login
Unerledigt Login

In the Linux kernel, the following vulnerability has been resolved:

md/raid10: check slab-out-of-bounds in md_bitmap_get_counter

If we write a large number to md/bitmap_set_bits, md_bitmap_checkpage()
will return -EINVAL because 'page >= bitmap->pages', but the return value
was not checked immediately in md_bitmap_get_counter() in order to set
*blocks value and slab-out-of-bounds occurs.

Move check of 'page >= bitmap->pages' to md_bitmap_get_counter() and
return directly if true.

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 374fb914304d9b500721007f3837ea8f1f9a2418

Version ef4256733506f2459a0c436b62267d22a3f0cec6

Status affected

Version < b0b971fe7d61411ede63c3291764dbde1577ef2c

Version ef4256733506f2459a0c436b62267d22a3f0cec6

Status affected

Version < 39fa14e824acfd470db4f42c354297456bd82b53

Version ef4256733506f2459a0c436b62267d22a3f0cec6

Status affected

Version < a134dd582c0d5b6068efa308bd485cf1d00b3f65

Version ef4256733506f2459a0c436b62267d22a3f0cec6

Status affected

Version < be1a3ec63a840cc9e59a033acf154f56255699a1

Version ef4256733506f2459a0c436b62267d22a3f0cec6

Status affected

Version < 152bb26796ff054af50b2ee1b3ca56e364e4f61b

Version ef4256733506f2459a0c436b62267d22a3f0cec6

Status affected

Version < bea301c046110bf421a3ce153fb868cb8d618e90

Version ef4256733506f2459a0c436b62267d22a3f0cec6

Status affected

Version < 301867b1c16805aebbc306aafa6ecdc68b73c7e5

Version ef4256733506f2459a0c436b62267d22a3f0cec6

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 2.6.36

Status affected

Version < 2.6.36

Version 0

Status unaffected

Version <= 4.19.*

Version 4.19.291

Status unaffected

Version <= 5.4.*

Version 5.4.251

Status unaffected

Version <= 5.10.*

Version 5.10.188

Status unaffected

Version <= 5.15.*

Version 5.15.121

Status unaffected

Version <= 6.1.*

Version 6.1.39

Status unaffected

Version <= 6.3.*

Version 6.3.13

Status unaffected

Version <= 6.4.*

Version 6.4.4

Status unaffected

Version <= *

Version 6.5

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.078

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

https://git.kernel.org/stable/c/374fb914304d9b500721007f3837ea8f1f9a2418

https://git.kernel.org/stable/c/b0b971fe7d61411ede63c3291764dbde1577ef2c

https://git.kernel.org/stable/c/39fa14e824acfd470db4f42c354297456bd82b53

https://git.kernel.org/stable/c/a134dd582c0d5b6068efa308bd485cf1d00b3f65

https://git.kernel.org/stable/c/be1a3ec63a840cc9e59a033acf154f56255699a1

https://git.kernel.org/stable/c/152bb26796ff054af50b2ee1b3ca56e364e4f61b

https://git.kernel.org/stable/c/bea301c046110bf421a3ce153fb868cb8d618e90

https://git.kernel.org/stable/c/301867b1c16805aebbc306aafa6ecdc68b73c7e5

https://nvd.nist.gov/vuln/detail/CVE-2023-53357

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-53357

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-53357

EUVD