CVE-2023-53357
EUVD-2023-5996917.09.2025, 15:15
In the Linux kernel, the following vulnerability has been resolved: md/raid10: check slab-out-of-bounds in md_bitmap_get_counter If we write a large number to md/bitmap_set_bits, md_bitmap_checkpage() will return -EINVAL because 'page >= bitmap->pages', but the return value was not checked immediately in md_bitmap_get_counter() in order to set *blocks value and slab-out-of-bounds occurs. Move check of 'page >= bitmap->pages' to md_bitmap_get_counter() and return directly if true.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 2.6.36 ≤ 𝑥 < 4.19.291 |
| linux | linux_kernel | 4.20 ≤ 𝑥 < 5.4.251 |
| linux | linux_kernel | 5.5 ≤ 𝑥 < 5.10.188 |
| linux | linux_kernel | 5.11 ≤ 𝑥 < 5.15.121 |
| linux | linux_kernel | 5.16 ≤ 𝑥 < 6.1.39 |
| linux | linux_kernel | 6.2 ≤ 𝑥 < 6.3.13 |
| linux | linux_kernel | 6.4 ≤ 𝑥 < 6.4.4 |
𝑥
= Vulnerable software versions
Debian Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| cluster-md-kmp-default |
| ||||||||||||||||
| dlm-kmp-default |
| ||||||||||||||||
| gfs2-kmp-default |
| ||||||||||||||||
| kernel-64kb |
| ||||||||||||||||
| kernel-azure |
| ||||||||||||||||
| kernel-default |
| ||||||||||||||||
| kernel-default-base |
| ||||||||||||||||
| kernel-default-man |
| ||||||||||||||||
| kernel-obs-build |
| ||||||||||||||||
| kernel-source |
| ||||||||||||||||
| kernel-source-azure |
| ||||||||||||||||
| kernel-zfcpdump |
| ||||||||||||||||
| ocfs2-kmp-default |
| ||||||||||||||||
| reiserfs-kmp-default |
|
Amazon Linux Releases
Amazon Package | |||
|---|---|---|---|
| bpftool |
| ||
| bpftool-debuginfo |
| ||
| kernel |
| ||
| kernel-debuginfo |
| ||
| kernel-debuginfo-common-aarch64 |
| ||
| kernel-debuginfo-common-x86_64 |
| ||
| kernel-devel |
| ||
| kernel-headers |
| ||
| kernel-libbpf |
| ||
| kernel-libbpf-devel |
| ||
| kernel-libbpf-static |
| ||
| kernel-livepatch-6.1.41-63.109 |
| ||
| kernel-tools |
| ||
| kernel-tools-debuginfo |
| ||
| kernel-tools-devel |
| ||
| perf |
| ||
| perf-debuginfo |
| ||
| python3-perf |
| ||
| python3-perf-debuginfo |
|
Common Weakness Enumeration
References