Description

In the Linux kernel, the following vulnerability has been resolved: phy: hisilicon: Fix an out of bounds check in hisi_inno_phy_probe() The size of array 'priv->ports[]' is INNO_PHY_PORT_NUM. In the for loop, 'i' is used as the index for array 'priv->ports[]' with a check (i > INNO_PHY_PORT_NUM) which indicates that INNO_PHY_PORT_NUM is allowed value for 'i' in the same loop. This > comparison needs to be changed to >=, otherwise it potentially leads to an out of bounds write on the next iteration through the loop

INFO

Published Date :

2025-09-15T14:22:12.160Z

Last Modified :

2026-01-14T18:02:50.243Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53238 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53238.

URL Resource
https://git.kernel.org/stable/c/01cb355bb92e8fcf8306e11a4774d610c5864e39 cve-icon cve-icon
https://git.kernel.org/stable/c/13c088cf3657d70893d75cf116be937f1509cc0f cve-icon cve-icon
https://git.kernel.org/stable/c/195e806b2afb0bad6470c9094f7e45e0cf109ee0 cve-icon cve-icon
https://git.kernel.org/stable/c/2843a2e703f5cb85c9eeca11b7ee90861635a010 cve-icon cve-icon
https://git.kernel.org/stable/c/6d8a71e4c3a2fa4960cc50996e76a42b62fab677 cve-icon cve-icon
https://git.kernel.org/stable/c/ad249aa3c38f329f91fba8b4b3cd087e79fb0ce8 cve-icon cve-icon
https://git.kernel.org/stable/c/ce69eac840db0b559994dc4290fce3d7c0d7bccd cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025091516-CVE-2023-53238-f8a7@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53238 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53238 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact