CVE-2023-53661

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

07/10/2025

Last modified:

08/10/2025

Description

In the Linux kernel, the following vulnerability has been resolved: bnxt: avoid overflow in bnxt_get_nvram_directory() The value of an arithmetic expression is subject of possible overflow due to a failure to cast operands to a larger data type before performing arithmetic. Used macro for multiplication instead operator for avoiding overflow. Found by Security Code and Linux Verification Center (linuxtesting.org) with SVACE.

Impact

References to Advisories, Solutions, and Tools

https://git.kernel.org/stable/c/17e0453a7523ad7a25bb47af941b150a6c66d7b6
https://git.kernel.org/stable/c/7c6dddc239abe660598c49ec95ea0ed6399a4b2a
https://git.kernel.org/stable/c/d5eaf2a6b077f32a477feb1e9e1c1f60605b460e
https://git.kernel.org/stable/c/efb1a257513438d43f4335f09b2f684e8167cad2