CVE-2023-53038

Published: May 2, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Check kzalloc() in lpfc_sli4_cgn_params_read() If kzalloc() fails in lpfc_sli4_cgn_params_read(), then we rely on lpfc_read_object()'s routine to NULL check pdata. Currently, an early return error is thrown from lpfc_read_object() to protect us from NULL ptr dereference, but the errno code is -ENODEV. Change the errno code to a more appropriate -ENOMEM.

Vendor	Product	Versions
Linux	Linux	affected `72df8a452883b0be334396acba07df77c3c3f6c7 - < 67b8343998b84418bc5b5206aa01fe9b461a80ef` affected `72df8a452883b0be334396acba07df77c3c3f6c7 - < 4829a1e1171536978b240a1438789c2e4d5c9715` affected `72df8a452883b0be334396acba07df77c3c3f6c7 - < 908dd9a0853a88155a5a36018c7e2b32ccf20379` affected `72df8a452883b0be334396acba07df77c3c3f6c7 - < 312320b0e0ec21249a17645683fe5304d796aec1`
Linux	Linux	affected `5.15` unaffected `0 - < 5.15` unaffected `5.15.105 - <= 5.15.` unaffected `6.1.22 - <= 6.1.` unaffected `6.2.9 - <= 6.2.*` +1 more versions

References

https://git.kernel.org/stable/c/67b8343998b84418bc5b5206aa01fe9b461a80ef

https://git.kernel.org/stable/c/4829a1e1171536978b240a1438789c2e4d5c9715

https://git.kernel.org/stable/c/908dd9a0853a88155a5a36018c7e2b32ccf20379

https://git.kernel.org/stable/c/312320b0e0ec21249a17645683fe5304d796aec1

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-53038

Description

Affected Products

References