We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2023-53010

bnxt: Do not read past the end of test names



Description

In the Linux kernel, the following vulnerability has been resolved: bnxt: Do not read past the end of test names Test names were being concatenated based on a offset beyond the end of the first name, which tripped the buffer overflow detection logic: detected buffer overflow in strnlen [...] Call Trace: bnxt_ethtool_init.cold+0x18/0x18 Refactor struct hwrm_selftest_qlist_output to use an actual array, and adjust the concatenation to use snprintf() rather than a series of strncat() calls.

Reserved 2025-03-27 | Published 2025-03-27 | Updated 2025-05-04 | Assigner Linux

Product status

Default status
unaffected

eb51365846bc418687af4c4f41b68b6e84cdd449 before cefa85480ac99c0bef5a09daadb48d65fc28e279
affected

eb51365846bc418687af4c4f41b68b6e84cdd449 before d3e599c090fc6977331150c5f0a69ab8ce87da21
affected

Default status
affected

4.12
affected

Any version before 4.12
unaffected

6.1.9
unaffected

6.2
unaffected

References

git.kernel.org/...c/cefa85480ac99c0bef5a09daadb48d65fc28e279

git.kernel.org/...c/d3e599c090fc6977331150c5f0a69ab8ce87da21

cve.org (CVE-2023-53010)

nvd.nist.gov (CVE-2023-53010)

Download JSON

Share this page
https://cve.threatint.eu/CVE/CVE-2023-53010

Support options

Helpdesk Chat, Email, Knowledgebase
© Copyright 2025 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.