{"id":"CVE-2023-53684","summary":"xfrm: Zero padding when dumping algos and encap","details":"In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: Zero padding when dumping algos and encap\n\nWhen copying data to user-space we should ensure that only valid\ndata is copied over.  Padding in structures may be filled with\nrandom (possibly sensitve) data and should never be given directly\nto user-space.\n\nThis patch fixes the copying of xfrm algorithms and the encap\ntemplate in xfrm_user so that padding is zeroed.","modified":"2026-04-02T09:44:49.252855Z","published":"2025-10-07T15:21:37.413Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53684.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/0725daaa9a879388ed312110f62dbd5ea2d75f8f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/1a351e26cc010d6991fbbd5701ac16581372e26f"},{"type":"WEB","url":"https://git.kernel.org/stable/c/5218af4ad5d8948faac19f71583bcd786c3852df"},{"type":"WEB","url":"https://git.kernel.org/stable/c/8222d5910dae08213b6d9d4bc9a7f8502855e624"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53684.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-53684"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"c7a5899eb26e2a4d516d53f65b6dd67be2228041"},{"fixed":"0725daaa9a879388ed312110f62dbd5ea2d75f8f"},{"fixed":"5218af4ad5d8948faac19f71583bcd786c3852df"},{"fixed":"1a351e26cc010d6991fbbd5701ac16581372e26f"},{"fixed":"8222d5910dae08213b6d9d4bc9a7f8502855e624"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-53684.json"}}],"schema_version":"1.7.5"}