Description

In the Linux kernel, the following vulnerability has been resolved: usb: early: xhci-dbc: Fix a potential out-of-bound memory access If xdbc_bulk_write() fails, the values in 'buf' can be anything. So the string is not guaranteed to be NULL terminated when xdbc_trace() is called. Reserve an extra byte, which will be zeroed automatically because 'buf' is a static variable, in order to avoid troubles, should it happen.

INFO

Published Date :

2025-12-09T01:29:56.848Z

Last Modified :

2025-12-09T01:29:56.848Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2023-53840 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-53840.

URL Resource
https://git.kernel.org/stable/c/351c8d8650d1ccc006255fa01f98b6c6496a02e5 cve-icon cve-icon
https://git.kernel.org/stable/c/a4a97ab3db5c081eb6e7dba91306adefb461e0bd cve-icon cve-icon
https://git.kernel.org/stable/c/df7c8aba7309f4dc55df94e06b67f576c0f52406 cve-icon cve-icon
https://git.kernel.org/stable/c/e8fb0f13e45cf361fd06593d3cb2d89915cd3bd0 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025120957-CVE-2023-53840-797d@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-53840 cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-53840 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact