Description

In the Linux kernel, the following vulnerability has been resolved: iw_cxgb4: Fix potential NULL dereference in c4iw_fill_res_cm_id_entry() This condition needs to match the previous "if (epcp->state == LISTEN) {" exactly to avoid a NULL dereference of either "listen_ep" or "ep". The problem is that "epcp" has been re-assigned so just testing "if (epcp->state == LISTEN) {" a second time is not sufficient.

INFO

Published Date :

2025-10-01T11:42:45.499Z

Last Modified :

2025-10-01T11:42:45.499Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53476 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53476.

URL Resource
https://git.kernel.org/stable/c/24278dc380aab6a1aef0a75317f57ad4c2453cf6 cve-icon cve-icon
https://git.kernel.org/stable/c/4ca446b127c568b59cb8d9748b6f70499624bb18 cve-icon cve-icon
https://git.kernel.org/stable/c/76e0396313c79ecd0df44ee3c18745cfac52b3e6 cve-icon cve-icon
https://git.kernel.org/stable/c/dd55240e4364d64befcc575b0d33091881524f42 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025100111-CVE-2023-53476-d6d3@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53476 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53476 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact