CVE-2023-53245NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference5 documents5 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 93.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedSep 15

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Fix handling of virtual Fibre Channel timeouts Hyper-V provides the ability to connect Fibre Channel LUNs to the host system and present them in a guest VM as a SCSI device. I/O to the vFC device is handled by the storvsc driver. The storvsc driver includes a partial integration with the FC transport implemented in the generic portion of the Linux SCSI subsystem so that FC attributes can be displayed in /sys. Ho

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

NVDlinux/linux_kernel4.134.14.323+7
Debianlinux/linux_kernel< 5.10.191-1+3
CVEListV5linux/linux3930d7309807ba0bfa460dfa9ed68d5560347dd2cd87f4df9865a53807001ed12c0f0420b14ececd+8
debiandebian/linux< linux 6.1.52-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
GHSA
GHSA-3xmr-hc67-565w: In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Fix handling of virtual Fibre Channel timeouts Hyper-V provides t2025-09-15
OSV
CVE-2023-53245: In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Fix handling of virtual Fibre Channel timeouts Hyper-V provides the2025-09-15

📋Vendor Advisories

2
Red Hat
kernel: scsi: storvsc: Fix handling of virtual Fibre Channel timeouts2025-09-15
Debian
CVE-2023-53245: linux - In the Linux kernel, the following vulnerability has been resolved: scsi: storv...2023
CVE-2023-53245 — NULL Pointer Dereference in Linux | cvebase