Sign in Subscribe

← All advisories

Unrated severityNVD Advisory· Published May 2, 2025· Updated May 4, 2025

xsk: Add missing overflow check in xdp_umem_reg

CVE-2023-53080

Description

In the Linux kernel, the following vulnerability has been resolved:

xsk: Add missing overflow check in xdp_umem_reg

The number of chunks can overflow u32. Make sure to return -EINVAL on overflow. Also remove a redundant u32 cast assigning umem->npgs.

Affected products

10

Linux/Linux Kernel Rtllm-fuzzy
osv-coords8 versions
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5 pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSS pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5 pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSS pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5 pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5-LTSS pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20LTSS%20Extended%20Security%2012%20SP5 pkg:rpm/suse/kgraft-patch-SLE12-SP5_Update_69&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2012%20SP5
< 4.12.14-122.261.1+ 7 more
- (no CPE)range: < 4.12.14-122.261.1
- (no CPE)range: < 4.12.14-122.261.1
- (no CPE)range: < 4.12.14-122.261.1
- (no CPE)range: < 4.12.14-122.261.1
- (no CPE)range: < 4.12.14-122.261.1
- (no CPE)range: < 4.12.14-122.261.1
- (no CPE)range: < 4.12.14-122.261.1
- (no CPE)range: < 1-8.3.1
Linux/Linuxcpe-rescue
Range: 4.18

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

News mentions

0

No linked articles in our index yet.