-
CVE-2023-53465
- EPSS 0.02%
- Published 01.10.2025 12:15:48
- Last modified 02.10.2025 19:12:17
- Source 416baaa9-dc9f-4396-8d5f-8c081f
- Teams watchlist Login
- Open Login
In the Linux kernel, the following vulnerability has been resolved: soundwire: qcom: fix storing port config out-of-bounds The 'qcom_swrm_ctrl->pconfig' has size of QCOM_SDW_MAX_PORTS (14), however we index it starting from 1, not 0, to match real port numbers. This can lead to writing port config past 'pconfig' bounds and overwriting next member of 'qcom_swrm_ctrl' struct. Reported also by smatch: drivers/soundwire/qcom.c:1269 qcom_swrm_get_port_config() error: buffer overflow 'ctrl->pconfig' 14 <= 14
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users. Login
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
VendorLinux
≫
Product
Linux
Default Statusunaffected
Version <
20f7c4d51c94abb1a1a7c21900db4fb5afe5c8ff
Version
9916c02ccd74e672b62dd1a9017ac2f237ebf512
Status
affected
Version <
801daff0078087b5df9145c9f5e643c28129734b
Version
9916c02ccd74e672b62dd1a9017ac2f237ebf512
Status
affected
Version <
32eb67d7360d48c15883e0d21b29c0aab9da022e
Version
9916c02ccd74e672b62dd1a9017ac2f237ebf512
Status
affected
Version <
490937d479abe5f6584e69b96df066bc87be92e9
Version
9916c02ccd74e672b62dd1a9017ac2f237ebf512
Status
affected
VendorLinux
≫
Product
Linux
Default Statusaffected
Version
5.13
Status
affected
Version <
5.13
Version
0
Status
unaffected
Version <=
5.15.*
Version
5.15.121
Status
unaffected
Version <=
6.1.*
Version
6.1.40
Status
unaffected
Version <=
6.4.*
Version
6.4.5
Status
unaffected
Version <=
*
Version
6.5
Status
unaffected
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.048 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|