CVE-2023-53840

NONE EPSS 10.6%
Published Dec 9, 20256mo ago · Modified Jun 17, 20262w ago
Find Similar
Published Dec 9, 2025 6mo ago
Last Modified Jun 17, 2026 2w ago

Description

In the Linux kernel, the following vulnerability has been resolved: usb: early: xhci-dbc: Fix a potential out-of-bound memory access If xdbc_bulk_write() fails, the values in 'buf' can be anything. So the string is not guaranteed to be NULL terminated when xdbc_trace() is called. Reserve an extra byte, which will be zeroed automatically because 'buf' is a static variable, in order to avoid troubles, should it happen.

Threat Intelligence

EPSS Exploit Probability
10.6% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

References 4

  • git.kernel.org https://git.kernel.org/stable/c/351c8d8650d1ccc006255fa01f98b6c6496a02e5
  • git.kernel.org https://git.kernel.org/stable/c/a4a97ab3db5c081eb6e7dba91306adefb461e0bd
  • git.kernel.org https://git.kernel.org/stable/c/df7c8aba7309f4dc55df94e06b67f576c0f52406
  • git.kernel.org https://git.kernel.org/stable/c/e8fb0f13e45cf361fd06593d3cb2d89915cd3bd0

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.