CVE-2023-53040 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved: ca8210: fix mac_len negative array access This patch fixes a buffer overflow access of skb->data if ieee802154_hdr_peek_addrs() fails.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Linux	Linux Kernel

No data.

References

Link	Providers
https://git.kernel.org/stable/c/55d836f75778d2e2cafe37e023f9c106400bad4b
https://git.kernel.org/stable/c/5da4469a7aa011de614c3e2ae383c35a353a382e
https://git.kernel.org/stable/c/6c993779ea1d0cccdb3a5d7d45446dd229e610a3
https://git.kernel.org/stable/c/7df72bedbdd1d02bb216e1f6eca0a16900238c4e
https://git.kernel.org/stable/c/918944526a386f186dd818ea6b0bcbed75d8c16b
https://git.kernel.org/stable/c/d143e327c97241599c958d1ba9fbaa88c37db721
https://git.kernel.org/stable/c/d2b3bd0d4cadfdb7f3454d2aef9d5d9e8b48aae4
https://git.kernel.org/stable/c/fd176a18db96d574d8c4763708abcec4444a08b6
https://lore.kernel.org/linux-cve-announce/2025050202-CVE-2023-53040-141f@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-53040
https://www.cve.org/CVERecord?id=CVE-2023-53040

History

Mon, 05 May 2025 14:00:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025050202-CVE-2023-53040-141f@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2023-53040 https://www.cve.org/CVERecord?id=CVE-2023-53040
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Moderate`

Fri, 02 May 2025 16:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: ca8210: fix mac_len negative array access This patch fixes a buffer overflow access of skb->data if ieee802154_hdr_peek_addrs() fails.
Title		ca8210: fix mac_len negative array access
References		https://git.kernel.org/stable/c/55d836f75778d2e2cafe37e023f9c106400bad4b https://git.kernel.org/stable/c/5da4469a7aa011de614c3e2ae383c35a353a382e https://git.kernel.org/stable/c/6c993779ea1d0cccdb3a5d7d45446dd229e610a3 https://git.kernel.org/stable/c/7df72bedbdd1d02bb216e1f6eca0a16900238c4e https://git.kernel.org/stable/c/918944526a386f186dd818ea6b0bcbed75d8c16b https://git.kernel.org/stable/c/d143e327c97241599c958d1ba9fbaa88c37db721 https://git.kernel.org/stable/c/d2b3bd0d4cadfdb7f3454d2aef9d5d9e8b48aae4 https://git.kernel.org/stable/c/fd176a18db96d574d8c4763708abcec4444a08b6

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-05-02T15:54:58.527Z

Updated: 2025-05-04T07:48:17.467Z

Reserved: 2025-04-16T07:18:43.827Z

Link: CVE-2023-53040

Vulnrichment

No data.

NVD

Status : Awaiting Analysis

Published: 2025-05-02T16:15:23.113

Modified: 2025-05-05T20:54:45.973

Link: CVE-2023-53040

Redhat

Severity : Moderate

Publid Date: 2025-05-02T00:00:00Z

Links: CVE-2023-53040 - Bugzilla

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object