CVE-2023-53372
Published: Sep 18, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: sctp: fix a potential overflow in sctp_ifwdtsn_skip Currently, when traversing ifwdtsn skips with _sctp_walk_ifwdtsn, it only checks the pos against the end of the chunk. However, the data left for the last pos may be < sizeof(struct sctp_ifwdtsn_skip), and dereference it as struct sctp_ifwdtsn_skip may cause coverflow. This patch fixes it by checking the pos against "the end of the chunk - sizeof(struct sctp_ifwdtsn_skip)" in sctp_ifwdtsn_skip, similar to sctp_fwdtsn_skip.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 0fc2ea922c8ad5520c80f03facbf396c81dce802 - < 4fbd094d4131a10d06a45d64158567052a35b3f4affected 0fc2ea922c8ad5520c80f03facbf396c81dce802 - < ad831a7079c99c01e801764b53bc9997c2e9c0f7affected 0fc2ea922c8ad5520c80f03facbf396c81dce802 - < 79b28f42214a3d0d6a8c514db3602260bd5d6cb5affected 0fc2ea922c8ad5520c80f03facbf396c81dce802 - < 6109f5b13ce3e3e537db6f18976ec0e9118d1c6faffected 0fc2ea922c8ad5520c80f03facbf396c81dce802 - < 5c9367ac5a22d71841bcd00130f9146c9b227d57+2 more versions |
Linux | Linux | affected 4.16unaffected 0 - < 4.16unaffected 4.19.281 - <= 4.19.*unaffected 5.4.241 - <= 5.4.*unaffected 5.10.178 - <= 5.10.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now