CVE-2023-53748

NONE EPSS 5.0%
Published Dec 8, 20256mo ago · Modified Jun 17, 20261w ago
Find Similar
Published Dec 8, 2025 6mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix potential array out-of-bounds in decoder queue_setup variable *nplanes is provided by user via system call argument. The possible value of q_data->fmt->num_planes is 1-3, while the value of *nplanes can be 1-8. The array access by index i can cause array out-of-bounds. Fix this bug by checking *nplanes against the array size.

Threat Intelligence

EPSS Exploit Probability
5.0% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 3

  • git.kernel.org https://git.kernel.org/stable/c/48e4e06e2c5fe1fda283d499f91492eda2248bb9
  • git.kernel.org https://git.kernel.org/stable/c/8fbcf730cb89c3647f3365226fe7014118fa93c7
  • git.kernel.org https://git.kernel.org/stable/c/b8e19bf3b4aebd855be01b64674187dcf6d1db51

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.