vulnerability
Ubuntu: (CVE-2023-53010): linux vulnerability
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | Mar 27, 2025 | Jun 26, 2025 | Oct 24, 2025 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
Mar 27, 2025
Added
Jun 26, 2025
Modified
Oct 24, 2025
Description
In the Linux kernel, the following vulnerability has been resolved:
bnxt: Do not read past the end of test names
Test names were being concatenated based on a offset beyond the end of
the first name, which tripped the buffer overflow detection logic:
detected buffer overflow in strnlen
[...]
Call Trace:
bnxt_ethtool_init.cold+0x18/0x18
Refactor struct hwrm_selftest_qlist_output to use an actual array,
and adjust the concatenation to use snprintf() rather than a series of
strncat() calls.
Solution
no-fix-ubuntu-package
References
- CVE-2023-53010
- https://attackerkb.com/topics/CVE-2023-53010
- URL-https://git.kernel.org/linus/d3e599c090fc6977331150c5f0a69ab8ce87da21
- URL-https://git.kernel.org/stable/c/cefa85480ac99c0bef5a09daadb48d65fc28e279
- URL-https://git.kernel.org/stable/c/d3e599c090fc6977331150c5f0a69ab8ce87da21
- URL-https://www.cve.org/CVERecord?id=CVE-2023-53010
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.