CVE-2023-53803

Summary

In the Linux kernel, the following vulnerability has been resolved:

scsi: ses: Fix slab-out-of-bounds in ses_enclosure_data_process()

A fix for:

BUG: KASAN: slab-out-of-bounds in ses_enclosure_data_process+0x949/0xe30 [ses] Read of size 1 at addr ffff88a1b043a451 by task systemd-udevd/3271

Checking after (and before in next loop) addl_desc_ptr[1] is sufficient, we expect the size to be sanitized before first access to addl_desc_ptr[1]. Make sure we don't walk beyond end of page.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux21fab1d0595eacf781705ec3509012a28f298245 < da1a955c48a16e16e925d6544793914e52a6fa51affected
LinuxLinux21fab1d0595eacf781705ec3509012a28f298245 < 9e5c7d52085b8c84bc82a261580f0eb170039325affected
LinuxLinux21fab1d0595eacf781705ec3509012a28f298245 < 467afb1dd630d8c6d172bd6cacc125199b5f4f2daffected
LinuxLinux21fab1d0595eacf781705ec3509012a28f298245 < e4dd25da784b2e07dbfbf04509afa4c5a1375227affected
LinuxLinux21fab1d0595eacf781705ec3509012a28f298245 < 2b28a7d261cb309912596d6a2d383ca370483527affected
LinuxLinux21fab1d0595eacf781705ec3509012a28f298245 < 0dfe68394cbe1d4fe579fb325ecc813c50528c5aaffected
LinuxLinux21fab1d0595eacf781705ec3509012a28f298245 < 799e8dd2022d2e13f0c5c1906b40ceca07a23349affected
LinuxLinux21fab1d0595eacf781705ec3509012a28f298245 < 9b4f5028e493cb353a5c8f5c45073eeea0303abdaffected
LinuxLinux2.6.32affected
LinuxLinux0 < 2.6.32unaffected
LinuxLinux4.14.308 <= 4.14.*unaffected
LinuxLinux4.19.276 <= 4.19.*unaffected
LinuxLinux5.4.235 <= 5.4.*unaffected
LinuxLinux5.10.173 <= 5.10.*unaffected
LinuxLinux5.15.99 <= 5.15.*unaffected
LinuxLinux6.1.16 <= 6.1.*unaffected
LinuxLinux6.2.3 <= 6.2.*unaffected
LinuxLinux6.3 <= *unaffected

Weaknesses

References