CVE-2023-53442
5.5
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Summary
In the Linux kernel, the following vulnerability has been resolved:
ice: Block switchdev mode when ADQ is active and vice versa
ADQ and switchdev are not supported simultaneously. Enabling both at the same time can result in nullptr dereference.
To prevent this, check if ADQ is active when changing devlink mode to switchdev mode, and check if switchdev is active when enabling ADQ.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Linux | Linux | fbc7b27af0f9fb181811424e29caf6825594a841 < 1c82d1b736ce85e77fd4da05eca6f1f4a52a2bc3 | affected |
| Linux | Linux | fbc7b27af0f9fb181811424e29caf6825594a841 < 24f0d69da35d812b3a1104918014a29627140cb1 | affected |
| Linux | Linux | fbc7b27af0f9fb181811424e29caf6825594a841 < 43d00e102d9ecbe2635d7e3f2e14d2e90183d6af | affected |
| Linux | Linux | 5.16 | affected |
| Linux | Linux | 0 < 5.16 | unaffected |
| Linux | Linux | 6.1.47 <= 6.1.* | unaffected |
| Linux | Linux | 6.4.12 <= 6.4.* | unaffected |
| Linux | Linux | 6.5 <= * | unaffected |
Weaknesses
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://git.kernel.org/stable/c/1c82d1b736ce85e77fd4da05eca6f1f4a52a2bc3
- https://git.kernel.org/stable/c/24f0d69da35d812b3a1104918014a29627140cb1
- https://git.kernel.org/stable/c/43d00e102d9ecbe2635d7e3f2e14d2e90183d6af
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.