CVE-2023-53274Out-of-bounds Write in Linux

CWE-787Out-of-bounds Write5 documents5 sources
Severity
7.8HIGHNVD
EPSS
0.0%
top 93.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedSep 16

Description

In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: mt8183: Add back SSPM related clocks This reverts commit 860690a93ef23b567f781c1b631623e27190f101. On the MT8183, the SSPM related clocks were removed claiming a lack of usage. This however causes some issues when the driver was converted to the new simple-probe mechanism. This mechanism allocates enough space for all the clocks defined in the clock driver, not the highest index in the DT binding. This leads to

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

NVDlinux/linux_kernel6.46.4.10+1
Debianlinux/linux_kernel< 6.4.11-1+1
CVEListV5linux/linux3f37ba7cc385ba07762ffcd7ac38af8c0f84dd3e45d69917a4af6c869193f95932dc6d6f15d5ef86+2
debiandebian/linux< linux 6.4.11-1 (forky)

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
OSV
CVE-2023-53274: In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: mt8183: Add back SSPM related clocks This reverts commit 860690a93e2025-09-16
GHSA
GHSA-23pr-hf4g-r8h2: In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: mt8183: Add back SSPM related clocks This reverts commit 860690a92025-09-16

📋Vendor Advisories

2
Red Hat
kernel: clk: mediatek: mt8183: Add back SSPM related clocks2025-09-16
Debian
CVE-2023-53274: linux - In the Linux kernel, the following vulnerability has been resolved: clk: mediat...2023
CVE-2023-53274 — Out-of-bounds Write in Linux | cvebase