CVE-2023-53769

Severity CVSS v4.0:

Pending analysis

Type:

Unavailable / Other

Publication date:

08/12/2025

Last modified:

08/12/2025

Description

In the Linux kernel, the following vulnerability has been resolved: virt/coco/sev-guest: Double-buffer messages The encryption algorithms read and write directly to shared unencrypted memory, which may leak information as well as permit the host to tamper with the message integrity. Instead, copy whole messages in or out as needed before doing any computation on them.

Impact

References to Advisories, Solutions, and Tools

https://git.kernel.org/stable/c/4b69c63f716cfda38e1210e65b68f67f6cee2ddf
https://git.kernel.org/stable/c/577a64725bfd77645986168e953d405067ee565b
https://git.kernel.org/stable/c/965006103a14703cc42043bbf9b5e0cdf7a468ad
https://git.kernel.org/stable/c/c27dafc4aa50a29ec927b3aa84ac7b430071f682