CVE-2023-53495 - Vulnerability Details

In the Linux kernel, the following vulnerability has been resolved:

net: ethernet: mvpp2_main: fix possible OOB write in mvpp2_ethtool_get_rxnfc()

rules is allocated in ethtool_get_rxnfc and the size is determined by
rule_cnt from user space. So rule_cnt needs to be check before using
rules to avoid OOB writing or NULL pointer dereference.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00024.

Key SSVC decision points have not yet been added.

No data.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://git.kernel.org/stable/c/349638f7e5d3c7d328565587bb7b0454bbee02e2
https://git.kernel.org/stable/c/51fe0a470543f345e3c62b6798929de3ddcedc1d
https://git.kernel.org/stable/c/5bb09dddc724c5f7c4dc6dd3bfebd685eecd93e8
https://git.kernel.org/stable/c/61054a8ddb176b155a8f2bacdfefb3727187f5d9
https://git.kernel.org/stable/c/625b70d31dd4df4b96b3ddcbe251debb33bd67f5
https://git.kernel.org/stable/c/ba6673824efa3dc198b04a54e69dce480066d7d9
https://lore.kernel.org/linux-cve-announce/2025100125-CVE-2023-53495-3cce@gregkh/T
https://nvd.nist.gov/vuln/detail/CVE-2023-53495
https://www.cve.org/CVERecord?id=CVE-2023-53495

History

Thu, 02 Oct 2025 00:15:00 +0000

Type	Values Removed	Values Added
References		https://lore.kernel.org/linux-cve-announce/2025100125-CVE-2023-53495-3cce@gregkh/T https://nvd.nist.gov/vuln/detail/CVE-2023-53495 https://www.cve.org/CVERecord?id=CVE-2023-53495
Metrics	threat_severity `None`	cvssV3_1 `{'score': 5.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}` threat_severity `Moderate`

Wed, 01 Oct 2025 12:00:00 +0000

Type	Values Removed	Values Added
Description		In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mvpp2_main: fix possible OOB write in mvpp2_ethtool_get_rxnfc() rules is allocated in ethtool_get_rxnfc and the size is determined by rule_cnt from user space. So rule_cnt needs to be check before using rules to avoid OOB writing or NULL pointer dereference.
Title		net: ethernet: mvpp2_main: fix possible OOB write in mvpp2_ethtool_get_rxnfc()
References		https://git.kernel.org/stable/c/349638f7e5d3c7d328565587bb7b0454bbee02e2 https://git.kernel.org/stable/c/51fe0a470543f345e3c62b6798929de3ddcedc1d https://git.kernel.org/stable/c/5bb09dddc724c5f7c4dc6dd3bfebd685eecd93e8 https://git.kernel.org/stable/c/61054a8ddb176b155a8f2bacdfefb3727187f5d9 https://git.kernel.org/stable/c/625b70d31dd4df4b96b3ddcbe251debb33bd67f5 https://git.kernel.org/stable/c/ba6673824efa3dc198b04a54e69dce480066d7d9

MITRE

Status: PUBLISHED

Assigner: Linux

Published: 2025-10-01T11:45:46.877Z

Updated: 2025-10-01T11:45:46.877Z

Reserved: 2025-10-01T11:39:39.403Z

Link: CVE-2023-53495

Vulnrichment

No data.

NVD

Status : Received

Published: 2025-10-01T12:15:52.803

Modified: 2025-10-01T12:15:52.803

Link: CVE-2023-53495

Redhat

Severity : Moderate

Publid Date: 2025-10-01T00:00:00Z

Links: CVE-2023-53495 - Bugzilla

OpenCVE Enrichment

No data.

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object

JSON object