CVE-2023-53034

HIGH EPSS 7.7%
Published Apr 16, 20251y ago · Modified Jun 17, 20261w ago
7.1 CVSS 3.1
High
Find Similar
Published Apr 16, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: ntb_hw_switchtec: Fix shift-out-of-bounds in switchtec_ntb_mw_set_trans There is a kernel API ntb_mw_clear_trans() would pass 0 to both addr and size. This would make xlate_pos negative. [ 23.734156] switchtec switchtec0: MW 0: part 0 addr 0x0000000000000000 size 0x0000000000000000 [ 23.734158] ================================================================================ [ 23.734172] UBSAN: shift-out-of-bounds in drivers/ntb/hw/mscc/ntb_hw_switchtec.c:293:7 [ 23.734418] shift exponent -1 is negative Ensuring xlate_pos is a positive or zero before BIT.

CVSS Details

Base Score
7.1
Exploitability
1.8
Impact
5.2
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
7.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-125 Out-of-bounds Read Memory Safety

Affected Products 8

VendorProductVersionRange
linuxlinux_kernel*≥4.16  –  <5.4.292
linuxlinux_kernel*≥5.5  –  <5.10.236
linuxlinux_kernel*≥5.11  –  <5.15.180
linuxlinux_kernel*≥5.16  –  <6.1.134
linuxlinux_kernel*≥6.2  –  <6.6.87
linuxlinux_kernel*≥6.7  –  <6.12.23
linuxlinux_kernel*≥6.13  –  <6.13.11
linuxlinux_kernel*≥6.14  –  <6.14.2

References 11

  • git.kernel.org https://git.kernel.org/stable/c/0df2e03e4620548b41891b4e0d1bd9d2e0d8a39a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2429bdf26a0f3950fdd996861e9c1a3873af1dbe
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/36d32cfb00d42e865396424bb5d340fc0a28870d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5b6857bb3bfb0dae17fab1e42c1e82c204a508b1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7ed22f8d8be26225a78cf5e85b2036421a6bf2d5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c61a3f2df162ba424be0141649a9ef5f28eaccc1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cb153bdc1812a3375639ed6ca5f147eaefb65349
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/de203da734fae00e75be50220ba5391e7beecdf9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f56951f211f181410a383d305e8d370993e45294
    Patch
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00030.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/05/msg00045.html

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/0df2e03e4620548b41891b4e0d1bd9d2e0d8a39a
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2429bdf26a0f3950fdd996861e9c1a3873af1dbe
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/36d32cfb00d42e865396424bb5d340fc0a28870d
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/5b6857bb3bfb0dae17fab1e42c1e82c204a508b1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/7ed22f8d8be26225a78cf5e85b2036421a6bf2d5
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/c61a3f2df162ba424be0141649a9ef5f28eaccc1
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/cb153bdc1812a3375639ed6ca5f147eaefb65349
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/de203da734fae00e75be50220ba5391e7beecdf9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/f56951f211f181410a383d305e8d370993e45294
    Patch