Description

In the Linux kernel, the following vulnerability has been resolved: macvlan: add forgotten nla_policy for IFLA_MACVLAN_BC_CUTOFF The previous commit 954d1fa1ac93 ("macvlan: Add netlink attribute for broadcast cutoff") added one additional attribute named IFLA_MACVLAN_BC_CUTOFF to allow broadcast cutfoff. However, it forgot to describe the nla_policy at macvlan_policy (drivers/net/macvlan.c). Hence, this suppose NLA_S32 (4 bytes) integer can be faked as empty (0 bytes) by a malicious user, which could leads to OOB in heap just like CVE-2023-3773. To fix it, this commit just completes the nla_policy description for IFLA_MACVLAN_BC_CUTOFF. This enforces the length check and avoids the potential OOB read.

INFO

Published Date :

2025-10-01T11:46:03.878Z

Last Modified :

2025-10-01T11:46:03.878Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53516 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53516.

URL Resource
https://git.kernel.org/stable/c/55cef78c244d0d076f5a75a35530ca63c92f4426 cve-icon cve-icon
https://git.kernel.org/stable/c/79f44709aa7a744fbfbadd4aef678443290c6991 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025100131-CVE-2023-53516-ca63@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53516 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53516 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact