CVE-2023-53032 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function. When first_ip is 0, last_ip is 0xFFFFFFFF, and netmask is 31, the value of an arithmetic expression 2 << (netmask - mask_bits - 1) is subject to overflow due to a failure casting operands to a larger data type before performing the arithmetic. Note that it's harmless since the value will be checked at the next step. Found by InfoTeCS on behalf of Linux Verification Center (linuxtesting.org) with SVACE.

Reserved 2025-03-27 | Published 2025-03-27 | Updated 2025-05-04 | Assigner Linux

Product status

Default status

unaffected

b9fed748185a96b7cfe74afac4bd228e8af16f01 before e137d9bb26bd85ce07323a38e38ceb0b160db841

affected

b9fed748185a96b7cfe74afac4bd228e8af16f01 before dfd834ccc1b88bbbab81b9046a3a539dd0c2d14f

affected

b9fed748185a96b7cfe74afac4bd228e8af16f01 before feefb33eefa166fc3e0fd17547b0bc0cb3baced9

affected

b9fed748185a96b7cfe74afac4bd228e8af16f01 before 4e6a70fd840400e3a2e784a6673968a3eb2431c0

affected

b9fed748185a96b7cfe74afac4bd228e8af16f01 before 511cf17b2447fc41cfef8d71936e1fa53e395c1e

affected

b9fed748185a96b7cfe74afac4bd228e8af16f01 before e88865876d47c790be0d5e23973499d75d034364

affected

b9fed748185a96b7cfe74afac4bd228e8af16f01 before 9ea4b476cea1b7d461d16dda25ca3c7e616e2d15

affected

Default status

affected

3.7

affected

Any version before 3.7

unaffected

4.14.303

unaffected

4.19.270

unaffected

5.4.229

unaffected

5.10.164

unaffected

5.15.89

unaffected

6.1.7

unaffected

6.2

unaffected

References

git.kernel.org/...c/e137d9bb26bd85ce07323a38e38ceb0b160db841

git.kernel.org/...c/dfd834ccc1b88bbbab81b9046a3a539dd0c2d14f

git.kernel.org/...c/feefb33eefa166fc3e0fd17547b0bc0cb3baced9

git.kernel.org/...c/4e6a70fd840400e3a2e784a6673968a3eb2431c0

git.kernel.org/...c/511cf17b2447fc41cfef8d71936e1fa53e395c1e

git.kernel.org/...c/e88865876d47c790be0d5e23973499d75d034364

git.kernel.org/...c/9ea4b476cea1b7d461d16dda25ca3c7e616e2d15

cve.org (CVE-2023-53032)

nvd.nist.gov (CVE-2023-53032)

Download JSON