Back to search
CVE-2023-53729
Published: Oct 22, 2025
Modified: May 11, 2026
PUBLISHED
Description
In the Linux kernel, the following vulnerability has been resolved: soc: qcom: qmi_encdec: Restrict string length in decode The QMI TLV value for strings in a lot of qmi element info structures account for null terminated strings with MAX_LEN + 1. If a string is actually MAX_LEN + 1 length, this will cause an out of bounds access when the NULL character is appended in decoding.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 9b8a11e82615274d4133aab3cf5aa1c59191f0a2 - < 6b58859e7c4ac357517a59f0801e8ce1b58a8ee2affected 9b8a11e82615274d4133aab3cf5aa1c59191f0a2 - < 64c5e916fabe5ef7bef0210b8a59fa8941ee1b8eaffected 9b8a11e82615274d4133aab3cf5aa1c59191f0a2 - < 2ccab9f82772ead618689d17dbc6950d6bd1e741affected 9b8a11e82615274d4133aab3cf5aa1c59191f0a2 - < b2f39b813d1eed4a522428d1e6acd7dfe9b81579affected 9b8a11e82615274d4133aab3cf5aa1c59191f0a2 - < f6250ecb7fbb934b89539e7e2ba6c1d8555c0975+2 more versions |
Linux | Linux | affected 4.16unaffected 0 - < 4.16unaffected 4.19.295 - <= 4.19.*unaffected 5.4.257 - <= 5.4.*unaffected 5.10.195 - <= 5.10.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now