CVE-2023-53729

NONE EPSS 8.5%
Published Oct 22, 20258mo ago · Modified Jun 17, 20261w ago
Find Similar
Published Oct 22, 2025 8mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: qmi_encdec: Restrict string length in decode The QMI TLV value for strings in a lot of qmi element info structures account for null terminated strings with MAX_LEN + 1. If a string is actually MAX_LEN + 1 length, this will cause an out of bounds access when the NULL character is appended in decoding.

Threat Intelligence

EPSS Exploit Probability
8.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 7

  • git.kernel.org https://git.kernel.org/stable/c/22ee7c9c7f381be178b4457bc54530002e08e938
  • git.kernel.org https://git.kernel.org/stable/c/2ccab9f82772ead618689d17dbc6950d6bd1e741
  • git.kernel.org https://git.kernel.org/stable/c/64c5e916fabe5ef7bef0210b8a59fa8941ee1b8e
  • git.kernel.org https://git.kernel.org/stable/c/6b58859e7c4ac357517a59f0801e8ce1b58a8ee2
  • git.kernel.org https://git.kernel.org/stable/c/8d207400fd6b79c92aeb2f33bb79f62dff904ea2
  • git.kernel.org https://git.kernel.org/stable/c/b2f39b813d1eed4a522428d1e6acd7dfe9b81579
  • git.kernel.org https://git.kernel.org/stable/c/f6250ecb7fbb934b89539e7e2ba6c1d8555c0975

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.