CVE-2023-53661 | THREATINT

Description

In the Linux kernel, the following vulnerability has been resolved: bnxt: avoid overflow in bnxt_get_nvram_directory() The value of an arithmetic expression is subject of possible overflow due to a failure to cast operands to a larger data type before performing arithmetic. Used macro for multiplication instead operator for avoiding overflow. Found by Security Code and Linux Verification Center (linuxtesting.org) with SVACE.

PUBLISHED Reserved 2025-10-07 | Published 2025-10-07 | Updated 2025-10-07 | Assigner Linux

Product status

Default status

unaffected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before d5eaf2a6b077f32a477feb1e9e1c1f60605b460e

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before efb1a257513438d43f4335f09b2f684e8167cad2

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 17e0453a7523ad7a25bb47af941b150a6c66d7b6

affected

1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 before 7c6dddc239abe660598c49ec95ea0ed6399a4b2a

affected

Default status

affected

5.15.113

unaffected

6.1.30

unaffected

6.3.4

unaffected

6.4

unaffected

References

git.kernel.org/...c/d5eaf2a6b077f32a477feb1e9e1c1f60605b460e

git.kernel.org/...c/efb1a257513438d43f4335f09b2f684e8167cad2

git.kernel.org/...c/17e0453a7523ad7a25bb47af941b150a6c66d7b6

git.kernel.org/...c/7c6dddc239abe660598c49ec95ea0ed6399a4b2a

cve.org (CVE-2023-53661)

nvd.nist.gov (CVE-2023-53661)

Download JSON