Description

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: qmi_encdec: Restrict string length in decode The QMI TLV value for strings in a lot of qmi element info structures account for null terminated strings with MAX_LEN + 1. If a string is actually MAX_LEN + 1 length, this will cause an out of bounds access when the NULL character is appended in decoding.

INFO

Published Date :

2025-10-22T13:23:57.739Z

Last Modified :

2025-10-22T13:23:57.739Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53729 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53729.

URL Resource
https://git.kernel.org/stable/c/22ee7c9c7f381be178b4457bc54530002e08e938 cve-icon cve-icon
https://git.kernel.org/stable/c/2ccab9f82772ead618689d17dbc6950d6bd1e741 cve-icon cve-icon
https://git.kernel.org/stable/c/64c5e916fabe5ef7bef0210b8a59fa8941ee1b8e cve-icon cve-icon
https://git.kernel.org/stable/c/6b58859e7c4ac357517a59f0801e8ce1b58a8ee2 cve-icon cve-icon
https://git.kernel.org/stable/c/8d207400fd6b79c92aeb2f33bb79f62dff904ea2 cve-icon cve-icon
https://git.kernel.org/stable/c/b2f39b813d1eed4a522428d1e6acd7dfe9b81579 cve-icon cve-icon
https://git.kernel.org/stable/c/f6250ecb7fbb934b89539e7e2ba6c1d8555c0975 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025102216-CVE-2023-53729-ef1a@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53729 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53729 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact