Description

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Check kzalloc() in lpfc_sli4_cgn_params_read() If kzalloc() fails in lpfc_sli4_cgn_params_read(), then we rely on lpfc_read_object()'s routine to NULL check pdata. Currently, an early return error is thrown from lpfc_read_object() to protect us from NULL ptr dereference, but the errno code is -ENODEV. Change the errno code to a more appropriate -ENOMEM.

INFO

Published Date :

2025-05-02T15:54:57.091Z

Last Modified :

2026-01-05T10:18:04.174Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53038 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53038.

URL Resource
https://git.kernel.org/stable/c/312320b0e0ec21249a17645683fe5304d796aec1 cve-icon cve-icon
https://git.kernel.org/stable/c/4829a1e1171536978b240a1438789c2e4d5c9715 cve-icon cve-icon
https://git.kernel.org/stable/c/67b8343998b84418bc5b5206aa01fe9b461a80ef cve-icon cve-icon
https://git.kernel.org/stable/c/908dd9a0853a88155a5a36018c7e2b32ccf20379 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025050201-CVE-2023-53038-4b5c@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53038 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53038 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact