CVE-2023-53254Out-of-bounds Read in Linux

CWE-125Out-of-bounds Read6 documents6 sources
Severity
7.1HIGHNVD
EPSS
0.0%
top 96.91%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
LinuxLinux KernelDebian Linux+3 more
Timeline
PublishedSep 15

Description

In the Linux kernel, the following vulnerability has been resolved: cacheinfo: Fix shared_cpu_map to handle shared caches at different levels The cacheinfo sets up the shared_cpu_map by checking whether the caches with the same index are shared between CPUs. However, this will trigger slab-out-of-bounds access if the CPUs do not have the same cache hierarchy. Another problem is the mismatched shared_cpu_map when the shared cache does not have the same index between CPUs. CPU0 I D L3 index 0 1

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:HExploitability: 1.8 | Impact: 5.2

Affected Packages7 packages

NVDlinux/linux_kernel6.26.2.5+1
Debianlinux/linux_kernel< 6.1.20-1+2
CVEListV5linux/linux246246cbde5e840012f853e27630ebb59f4094862f588d0345d69a35e451077afed428fd057a5e34+3
debiandebian/linux< linux 6.1.20-1 (bookworm)

Patches

Patch: git.kernel.orgPatch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
GHSA
GHSA-7h3h-qq7m-57c9: In the Linux kernel, the following vulnerability has been resolved: cacheinfo: Fix shared_cpu_map to handle shared caches at different levels The ca2025-09-15
OSV
CVE-2023-53254: In the Linux kernel, the following vulnerability has been resolved: cacheinfo: Fix shared_cpu_map to handle shared caches at different levels The cach2025-09-15

📋Vendor Advisories

3
Red Hat
kernel: cacheinfo: Fix shared_cpu_map to handle shared caches at different levels2025-09-15
Microsoft
cacheinfo: Fix shared_cpu_map to handle shared caches at different levels2025-09-09
Debian
CVE-2023-53254: linux - In the Linux kernel, the following vulnerability has been resolved: cacheinfo: ...2023
CVE-2023-53254 — Out-of-bounds Read in Linux | cvebase