Description

In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: fix integer overflow in nl80211_parse_mbssid_elems() nl80211_parse_mbssid_elems() uses a u8 variable num_elems to count the number of MBSSID elements in the nested netlink attribute attrs, which can lead to an integer overflow if a user of the nl80211 interface specifies 256 or more elements in the corresponding attribute in userspace. The integer overflow can lead to a heap buffer overflow as num_elems determines the size of the trailing array in elems, and this array is thereafter written to for each element in attrs. Note that this vulnerability only affects devices with the wiphy->mbssid_max_interfaces member set for the wireless physical device struct in the device driver, and can only be triggered by a process with CAP_NET_ADMIN capabilities. Fix this by checking for a maximum of 255 elements in attrs.

INFO

Published Date :

2025-10-04T15:17:11.525Z

Last Modified :

2025-10-04T15:17:11.525Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53570 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53570.

URL Resource
https://git.kernel.org/stable/c/6311071a056272e1e761de8d0305e87cc566f734 cve-icon cve-icon
https://git.kernel.org/stable/c/7d09f9f255a5f78578deba5454923072bb53b16c cve-icon cve-icon
https://git.kernel.org/stable/c/e642eb67b8c10dcce758d549cc81564116e0fa49 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025100453-CVE-2023-53570-3733@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53570 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53570 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact