CVE-2023-53630Incorrect Calculation of Buffer Size in Linux

CWE-131Incorrect Calculation of Buffer Size6 documents6 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 97.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LinuxLinux KernelDebian Linux
Timeline
PublishedOct 7
Latest updateApr 20

Description

In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix unpinning of pages when an access is present syzkaller found that the calculation of batch_last_index should use 'start_index' since at input to this function the batch is either empty or it has already been adjusted to cross any accesses so it will start at the point we are unmapping from. Getting this wrong causes the unmap to run over the end of the pages which corrupts pages that were never mapped. In most ca

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

NVDlinux/linux_kernel6.26.2.11+1
Debianlinux/linux_kernel< 6.3.7-1+1
CVEListV5linux/linux8d160cd4d5066f864ec0f2c981470e55ac03ac2770726ce4d898db57bfc4ae30ecd7da63b0dd0aa4+2
debiandebian/linux< linux 6.3.7-1 (forky)

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

3
VulDB
Linux Kernel up to 6.2.10 iommufd pages.c batch_last_index information disclosure (WID-SEC-2025-2229)2026-04-20
GHSA
GHSA-xwrx-f4gw-ff4g: In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix unpinning of pages when an access is present syzkaller found that t2025-10-07
OSV
CVE-2023-53630: In the Linux kernel, the following vulnerability has been resolved: iommufd: Fix unpinning of pages when an access is present syzkaller found that the2025-10-07

📋Vendor Advisories

2
Red Hat
kernel: iommufd: Fix unpinning of pages when an access is present2025-10-07
Debian
CVE-2023-53630: linux - In the Linux kernel, the following vulnerability has been resolved: iommufd: Fi...2023