-

CVE-2023-54168

EPSS 0.04%
Veröffentlicht 30.12.2025 12:08:43
Zuletzt bearbeitet 31.12.2025 20:43:05
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

RDMA/mlx4: Prevent shift wrapping in set_user_sq_size()

The ucmd->log_sq_bb_count variable is controlled by the user so this
shift can wrap.  Fix it by using check_shl_overflow() in the same way
that it was done in commit 515f60004ed9 ("RDMA/hns: Prevent undefined
behavior in hns_roce_set_user_sq_size()").

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 11

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < 3d5ae269c4bd392ec1edbfb3bd031b8f42d7feff

Version 839041329fd3410e07d614f81e75bb43367d8f89

Status affected

Version < 8feca625900777e02a449e53fe4121339934c38a

Version 839041329fd3410e07d614f81e75bb43367d8f89

Status affected

Version < 9ad3221c86cc9c6305594b742d4a72dfbd4ea579

Version 839041329fd3410e07d614f81e75bb43367d8f89

Status affected

Version < 9911be2155720221a4f1f722b22bd0e2388d8bcf

Version 839041329fd3410e07d614f81e75bb43367d8f89

Status affected

Version < 3ce0df3493277b9df275cb8455d9c677ae701230

Version 839041329fd3410e07d614f81e75bb43367d8f89

Status affected

Version < 196a6df08b08699ace4ce70e1efcdd9081b6565f

Version 839041329fd3410e07d614f81e75bb43367d8f89

Status affected

Version < a183905869e692b6b7805b7472235585eff8e429

Version 839041329fd3410e07d614f81e75bb43367d8f89

Status affected

Version < d50b3c73f1ac20dabc53dc6e9d64ce9c79a331eb

Version 839041329fd3410e07d614f81e75bb43367d8f89

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 2.6.24

Status affected

Version < 2.6.24

Version 0

Status unaffected

Version <= 4.19.*

Version 4.19.283

Status unaffected

Version <= 5.4.*

Version 5.4.243

Status unaffected

Version <= 5.10.*

Version 5.10.180

Status unaffected

Version <= 5.15.*

Version 5.15.111

Status unaffected

Version <= 6.1.*

Version 6.1.28

Status unaffected

Version <= 6.2.*

Version 6.2.15

Status unaffected

Version <= 6.3.*

Version 6.3.2

Status unaffected

Version <= *

Version 6.4

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.04%	0.099

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/3d5ae269c4bd392ec1edbfb3bd031b8f42d7feff

https://git.kernel.org/stable/c/8feca625900777e02a449e53fe4121339934c38a

https://git.kernel.org/stable/c/9ad3221c86cc9c6305594b742d4a72dfbd4ea579

https://git.kernel.org/stable/c/9911be2155720221a4f1f722b22bd0e2388d8bcf

https://git.kernel.org/stable/c/3ce0df3493277b9df275cb8455d9c677ae701230

https://git.kernel.org/stable/c/196a6df08b08699ace4ce70e1efcdd9081b6565f

https://git.kernel.org/stable/c/a183905869e692b6b7805b7472235585eff8e429

https://git.kernel.org/stable/c/d50b3c73f1ac20dabc53dc6e9d64ce9c79a331eb

https://nvd.nist.gov/vuln/detail/CVE-2023-54168

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-54168

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-54168

EUVD