CVE-2023-53432 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: firewire: net: fix use after free in fwnet_finish_incoming_packet() The netif_rx() function frees the skb so we can't dereference it to save the skb->len.

PUBLISHED Reserved 2025-09-17 | Published 2025-09-18 | Updated 2025-09-18 | Assigner Linux

Product status

Default status

unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 2ea70379e4f4efa95c9daa7f3f9bdd4d40aec927

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 9040adc38cf6bfbb77034d558ac2c52f70d840ac

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 9860921ab4521252dc39bb21b9c936bd09a00982

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 (git) before 3ff256751a2853e1ffaa36958ff933ccc98c6cb5

affected

Default status

affected

5.15.128 (semver)

unaffected

6.1.47 (semver)

unaffected

6.4.12 (semver)

unaffected

6.5 (original_commit_for_fix)

unaffected

References

git.kernel.org/...c/2ea70379e4f4efa95c9daa7f3f9bdd4d40aec927

git.kernel.org/...c/9040adc38cf6bfbb77034d558ac2c52f70d840ac

git.kernel.org/...c/9860921ab4521252dc39bb21b9c936bd09a00982

git.kernel.org/...c/3ff256751a2853e1ffaa36958ff933ccc98c6cb5

cve.org (CVE-2023-53432)

nvd.nist.gov (CVE-2023-53432)

Download JSON