CVE-2023-53535

EUVD-2025-32328
In the Linux kernel, the following vulnerability has been resolved:

net: bcmgenet: Add a check for oversized packets

Occasionnaly we may get oversized packets from the hardware which
exceed the nomimal 2KiB buffer size we allocate SKBs with. Add an early
check which drops the packet to avoid invoking skb_over_panic() and move
on to processing the next packet.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
Affected Products (NVD)
VendorProductVersion
linuxlinux_kernel
3.15 ≤
𝑥
< 4.14.308
linuxlinux_kernel
4.15 ≤
𝑥
< 4.19.276
linuxlinux_kernel
4.20 ≤
𝑥
< 5.4.235
linuxlinux_kernel
5.5 ≤
𝑥
< 5.10.173
linuxlinux_kernel
5.11 ≤
𝑥
< 5.15.99
linuxlinux_kernel
5.16 ≤
𝑥
< 6.1.16
linuxlinux_kernel
6.2 ≤
𝑥
< 6.2.3
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
linux
bookworm
6.1.148-1
fixed
bookworm (security)
6.1.153-1
fixed
bullseye
5.10.223-1
fixed
bullseye (security)
5.10.237-1
fixed
forky
6.16.9-1
fixed
sid
6.16.9-1
fixed
trixie
6.12.43-1
fixed
trixie (security)
6.12.48-1
fixed
References
https://git.kernel.org/stable/c/124ca24e0de958d2e20e0aa1e2434af7b72f8887
https://git.kernel.org/stable/c/411317d2a4a7d6049d8efeef0d32ae43f8baefce
https://git.kernel.org/stable/c/5c0862c2c962052ed5055220a00ac1cefb92fbcd
https://git.kernel.org/stable/c/5f56767fb5f2df875b6553e08dbec6a45431c988
https://git.kernel.org/stable/c/7cdb07e10c1258c08f31b24898930e4ece88d163
https://git.kernel.org/stable/c/841881320562cbeac7046b537b91cd000480cea2
https://git.kernel.org/stable/c/87363d1ab55e497702a9506ff423c422639c8a25
https://git.kernel.org/stable/c/c34b1c0870323649d45c5074828d7f754dea2673