CVE-2023-53679 — Integer Underflow (Wrap or Wraparound) in Linux

CWE-191 — Integer Underflow (Wrap or Wraparound)5 documents5 sources

Severity

5.5MEDIUMNVD

EPSS

0.0%

top 97.11%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Linux Kernel Debian Linux

Timeline

PublishedOct 7

Description

In the Linux kernel, the following vulnerability has been resolved: wifi: mt7601u: fix an integer underflow Fix an integer underflow that leads to a null pointer dereference in 'mt7601u_rx_skb_from_seg()'. The variable 'dma_len' in the URB packet could be manipulated, which could trigger an integer underflow of 'seg_len' in 'mt7601u_rx_process_seg()'. This underflow subsequently causes the 'bad_frame' checks in 'mt7601u_rx_skb_from_seg()' to be bypassed, eventually leading to a dereference of …

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

▶NVDlinux/linux_kernel4.2 — 5.4.235+4

▶Debianlinux/linux_kernel< 5.10.178-1+3

▶CVEListV5linux/linuxc869f77d6abb5d5f9f2f1a661d5c53862a9cad34 — 67e4519afba215199b6dfa39ce5d7ea673ee4138+6

▶debiandebian/linux< linux 6.1.20-1 (bookworm)

Patches

Patch: git.kernel.org ↗Patch: git.kernel.org ↗Patch: git.kernel.org ↗

🔴Vulnerability Details

GHSA

GHSA-w427-vv2j-48v6: In the Linux kernel, the following vulnerability has been resolved: wifi: mt7601u: fix an integer underflow Fix an integer underflow that leads to a↗2025-10-07

▶

OSV

CVE-2023-53679: In the Linux kernel, the following vulnerability has been resolved: wifi: mt7601u: fix an integer underflow Fix an integer underflow that leads to a n↗2025-10-07

▶

📋Vendor Advisories

Red Hat

kernel: wifi: mt7601u: fix an integer underflow↗2025-10-07

▶

Debian

CVE-2023-53679: linux - In the Linux kernel, the following vulnerability has been resolved: wifi: mt760...↗2023

▶