CVE-2023-53034

Severity CVSS v4.0:

Pending analysis

Type:

CWE-125 Out-of-bounds Read

Publication date:

16/04/2025

Last modified:

03/11/2025

Description

In the Linux kernel, the following vulnerability has been resolved: ntb_hw_switchtec: Fix shift-out-of-bounds in switchtec_ntb_mw_set_trans There is a kernel API ntb_mw_clear_trans() would pass 0 to both addr and size. This would make xlate_pos negative. [ 23.734156] switchtec switchtec0: MW 0: part 0 addr 0x0000000000000000 size 0x0000000000000000 [ 23.734158] ================================================================================ [ 23.734172] UBSAN: shift-out-of-bounds in drivers/ntb/hw/mscc/ntb_hw_switchtec.c:293:7 [ 23.734418] shift exponent -1 is negative Ensuring xlate_pos is a positive or zero before BIT.

Impact

Vector 3.x

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H CVSS v3.1 Severity and Metrics:

Base Score: 7.10 HIGH
Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality (C): High
Integrity (I): None
Availability (A): High

Base Score 3.x

7.10

Severity 3.x

HIGH

Vulnerable products and versions

CPE	From	Up to
cpe:2.3:o:linux:linux_kernel::::::::	4.16 (including)	5.4.292 (excluding)
cpe:2.3:o:linux:linux_kernel::::::::	5.5 (including)	5.10.236 (excluding)
cpe:2.3:o:linux:linux_kernel::::::::	5.11 (including)	5.15.180 (excluding)
cpe:2.3:o:linux:linux_kernel::::::::	5.16 (including)	6.1.134 (excluding)
cpe:2.3:o:linux:linux_kernel::::::::	6.2 (including)	6.6.87 (excluding)
cpe:2.3:o:linux:linux_kernel::::::::	6.7 (including)	6.12.23 (excluding)
cpe:2.3:o:linux:linux_kernel::::::::	6.13 (including)	6.13.11 (excluding)
cpe:2.3:o:linux:linux_kernel::::::::	6.14 (including)	6.14.2 (excluding)

To consult the complete list of CPE names with products and versions, see this page

CVE-2023-53034

Description

Impact

Vulnerable products and versions

References to Advisories, Solutions, and Tools