CVE-2023-53589
Published: Oct 4, 2025
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't trust firmware n_channels If the firmware sends us a corrupted MCC response with n_channels much larger than the command response can be, we might copy far too much (uninitialized) memory and even crash if the n_channels is large enough to make it run out of the one page allocated for the FW response. Fix that by checking the lengths. Doing a < comparison would be sufficient, but the firmware should be doing it correctly, so check more strictly.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected dcaf9f5ecb6f395152609bdc40660d9b593dca63 - < e519a404a5bbba37693cb10fa61794a5fce4fd9baffected dcaf9f5ecb6f395152609bdc40660d9b593dca63 - < d0d39bed9e95f27a246be91c5929254ac043ed30affected dcaf9f5ecb6f395152609bdc40660d9b593dca63 - < 05ad5a4d421ce65652fcb24d46b7e273130240d6affected dcaf9f5ecb6f395152609bdc40660d9b593dca63 - < 557ba100d8cf3661ff8d71c0b4a2cba8db555ec2affected dcaf9f5ecb6f395152609bdc40660d9b593dca63 - < c176f03350954b795322de0bfe1d7b514db41f45+1 more versions |
Linux | Linux | affected 4.1unaffected 0 - < 4.1unaffected 5.4.244 - <= 5.4.*unaffected 5.10.181 - <= 5.10.*unaffected 5.15.113 - <= 5.15.*+3 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now