{"id":"CVE-2023-53495","summary":"net: ethernet: mvpp2_main: fix possible OOB write in mvpp2_ethtool_get_rxnfc()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet: ethernet: mvpp2_main: fix possible OOB write in mvpp2_ethtool_get_rxnfc()\n\nrules is allocated in ethtool_get_rxnfc and the size is determined by\nrule_cnt from user space. So rule_cnt needs to be check before using\nrules to avoid OOB writing or NULL pointer dereference.","modified":"2026-04-02T09:44:19.631581Z","published":"2025-10-01T11:45:46.877Z","related":["SUSE-SU-2025:03600-1","SUSE-SU-2025:03634-1","SUSE-SU-2025:20851-1","SUSE-SU-2025:20861-1","SUSE-SU-2025:20870-1","SUSE-SU-2025:20898-1","SUSE-SU-2025:3751-1","SUSE-SU-2025:4057-1","SUSE-SU-2025:4132-1","SUSE-SU-2025:4141-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53495.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/349638f7e5d3c7d328565587bb7b0454bbee02e2"},{"type":"WEB","url":"https://git.kernel.org/stable/c/51fe0a470543f345e3c62b6798929de3ddcedc1d"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5bb09dddc724c5f7c4dc6dd3bfebd685eecd93e8"},{"type":"WEB","url":"https://git.kernel.org/stable/c/61054a8ddb176b155a8f2bacdfefb3727187f5d9"},{"type":"WEB","url":"https://git.kernel.org/stable/c/625b70d31dd4df4b96b3ddcbe251debb33bd67f5"},{"type":"WEB","url":"https://git.kernel.org/stable/c/ba6673824efa3dc198b04a54e69dce480066d7d9"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53495.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-53495"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"90b509b39ac9b09be88eb641c7a3abd8de06b698"},{"fixed":"ba6673824efa3dc198b04a54e69dce480066d7d9"},{"fixed":"61054a8ddb176b155a8f2bacdfefb3727187f5d9"},{"fixed":"5bb09dddc724c5f7c4dc6dd3bfebd685eecd93e8"},{"fixed":"349638f7e5d3c7d328565587bb7b0454bbee02e2"},{"fixed":"625b70d31dd4df4b96b3ddcbe251debb33bd67f5"},{"fixed":"51fe0a470543f345e3c62b6798929de3ddcedc1d"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53495.json"}}],"schema_version":"1.7.5"}