{"id":"CVE-2023-53066","summary":"qed/qed_sriov: guard against NULL derefs from qed_iov_get_vf_info","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nqed/qed_sriov: guard against NULL derefs from qed_iov_get_vf_info\n\nWe have to make sure that the info returned by the helper is valid\nbefore using it.\n\nFound by Linux Verification Center (linuxtesting.org) with the SVACE\nstatic analysis tool.","modified":"2026-04-03T13:14:32.238512Z","published":"2025-05-02T15:55:19.730Z","related":["SUSE-SU-2025:01918-1","SUSE-SU-2025:01966-1","SUSE-SU-2025:01983-1","SUSE-SU-2025:02173-1","SUSE-SU-2025:02262-1"],"database_specific":{"cna_assigner":"Linux","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53066.json"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/25143b6a01d0cc5319edd3de22ffa2578b045550"},{"type":"WEB","url":"https://git.kernel.org/stable/c/39c3b9dd481c3afce9439b29bafe00444cb4406b"},{"type":"WEB","url":"https://git.kernel.org/stable/c/42d72c6d1edc9dc09a5d6f6695d257fa9e9cc270"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7742c08e012eb65405e8304d100641638c5ff882"},{"type":"WEB","url":"https://git.kernel.org/stable/c/7bd0037822fd04da13721f77a42ee5a077d4c5fb"},{"type":"WEB","url":"https://git.kernel.org/stable/c/97ea704f39b5ded96f071e98701aa543f6f89683"},{"type":"WEB","url":"https://git.kernel.org/stable/c/b224b0cab3a66e93d414825065a2e667a1d28c32"},{"type":"WEB","url":"https://git.kernel.org/stable/c/e42d3bde4ec03c863259878dddaef5c351cca7ad"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53066.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-53066"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"733def6a04bf3d2810dd675e1240f8df94d633c3"},{"fixed":"7bd0037822fd04da13721f77a42ee5a077d4c5fb"},{"fixed":"7742c08e012eb65405e8304d100641638c5ff882"},{"fixed":"42d72c6d1edc9dc09a5d6f6695d257fa9e9cc270"},{"fixed":"39c3b9dd481c3afce9439b29bafe00444cb4406b"},{"fixed":"e42d3bde4ec03c863259878dddaef5c351cca7ad"},{"fixed":"97ea704f39b5ded96f071e98701aa543f6f89683"},{"fixed":"b224b0cab3a66e93d414825065a2e667a1d28c32"},{"fixed":"25143b6a01d0cc5319edd3de22ffa2578b045550"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53066.json"}}],"schema_version":"1.7.5"}