Unrated severityNVD Advisory· Published Oct 7, 2025· Updated Jan 5, 2026

xfrm: Zero padding when dumping algos and encap

CVE-2023-53684

Description

In the Linux kernel, the following vulnerability has been resolved:

When copying data to user-space we should ensure that only valid data is copied over. Padding in structures may be filled with random (possibly sensitve) data and should never be given directly to user-space.

This patch fixes the copying of xfrm algorithms and the encap template in xfrm_user so that padding is zeroed.

Affected products

Linux/Linux Kernel Rtllm-fuzzy
Linux/Linuxv5
Range: 5.11

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

git.kernel.org/stable/c/0725daaa9a879388ed312110f62dbd5ea2d75f8fmitre
git.kernel.org/stable/c/1a351e26cc010d6991fbbd5701ac16581372e26fmitre
git.kernel.org/stable/c/5218af4ad5d8948faac19f71583bcd786c3852dfmitre
git.kernel.org/stable/c/8222d5910dae08213b6d9d4bc9a7f8502855e624mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000