CVE-2023-53080

Summary

In the Linux kernel, the following vulnerability has been resolved:

xsk: Add missing overflow check in xdp_umem_reg

The number of chunks can overflow u32. Make sure to return -EINVAL on overflow. Also remove a redundant u32 cast assigning umem->npgs.

Affected Software

VendorProductVersion RangeStatus
LinuxLinuxbbff2f321a864ee07c9d3d1245af498023146951 < 580634b03a55f04a3c1968bcbd97736c079c6601affected
LinuxLinuxbbff2f321a864ee07c9d3d1245af498023146951 < 3cfc3564411acf96bf2fb791f706a1aa4f872c1daffected
LinuxLinuxbbff2f321a864ee07c9d3d1245af498023146951 < a069909acc4435eeb41d05ccc03baa447cc01b7eaffected
LinuxLinuxbbff2f321a864ee07c9d3d1245af498023146951 < bb2e3bfb2a79db0c2057c6f701b782954394c67faffected
LinuxLinuxbbff2f321a864ee07c9d3d1245af498023146951 < c7df4813b149362248d6ef7be41a311e27bf75feaffected
LinuxLinux4.18affected
LinuxLinux0 < 4.18unaffected
LinuxLinux5.10.177 <= 5.10.*unaffected
LinuxLinux5.15.105 <= 5.15.*unaffected
LinuxLinux6.1.22 <= 6.1.*unaffected
LinuxLinux6.2.9 <= 6.2.*unaffected
LinuxLinux6.3 <= *unaffected

Weaknesses

References