CVE-2023-53675

Summary

In the Linux kernel, the following vulnerability has been resolved:

scsi: ses: Fix possible desc_ptr out-of-bounds accesses

Sanitize possible desc_ptr out-of-bounds accesses in ses_enclosure_data_process().

Affected Software

VendorProductVersion RangeStatus
LinuxLinux9927c68864e9c39cc317b4f559309ba29e642168 < 72021ae61a2bc6ca73cd593e255a10ed5f5dc5e7affected
LinuxLinux9927c68864e9c39cc317b4f559309ba29e642168 < cffe09ca0555e235a42d6fa065e463c4b3d5b657affected
LinuxLinux9927c68864e9c39cc317b4f559309ba29e642168 < 79ec5dd5fb07ecaea2f978c2d7a9f2f3526e4d19affected
LinuxLinux9927c68864e9c39cc317b4f559309ba29e642168 < c315560e3ef77c1d822249f1743e647dc9c9912aaffected
LinuxLinux9927c68864e9c39cc317b4f559309ba29e642168 < 584892fd29a41ef424a148118a3103b16b94fb8caffected
LinuxLinux9927c68864e9c39cc317b4f559309ba29e642168 < 414418abc19fa4ccf730d273061a426c07a061d6affected
LinuxLinux9927c68864e9c39cc317b4f559309ba29e642168 < 4b8cae410472653a59e15af62c57c49b8e0a1201affected
LinuxLinux9927c68864e9c39cc317b4f559309ba29e642168 < 801ab13d50cf3d26170ee073ea8bb4eececb76abaffected
LinuxLinux2.6.25affected
LinuxLinux0 < 2.6.25unaffected
LinuxLinux4.14.308 <= 4.14.*unaffected
LinuxLinux4.19.276 <= 4.19.*unaffected
LinuxLinux5.4.235 <= 5.4.*unaffected
LinuxLinux5.10.173 <= 5.10.*unaffected
LinuxLinux5.15.99 <= 5.15.*unaffected
LinuxLinux6.1.16 <= 6.1.*unaffected
LinuxLinux6.2.3 <= 6.2.*unaffected
LinuxLinux6.3 <= *unaffected

Weaknesses

References