vulnerability

Red Hat: CVE-2023-53521: kernel: scsi: ses: Fix slab-out-of-bounds in ses_intf_remove() (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:L/AC:M/Au:M/C:N/I:N/A:C)	Oct 1, 2025	Nov 14, 2025	Jan 28, 2026

Severity

CVSS

(AV:L/AC:M/Au:M/C:N/I:N/A:C)

Published

Oct 1, 2025

Added

Nov 14, 2025

Modified

Jan 28, 2026

Description

In the Linux kernel, the following vulnerability has been resolved:

scsi: ses: Fix slab-out-of-bounds in ses_intf_remove()

A fix for:

BUG: KASAN: slab-out-of-bounds in ses_intf_remove+0x23f/0x270 [ses]
Read of size 8 at addr ffff88a10d32e5d8 by task rmmod/12013

When edev->components is zero, accessing edev->component[0] members is
wrong.

Solution

redhat-upgrade-kernel

References

CWE-125
NVD-CVE-2023-53521
REDHAT-RHSA-2024:10772

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today