CVE-2023-53840

Published: Dec 9, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: usb: early: xhci-dbc: Fix a potential out-of-bound memory access If xdbc_bulk_write() fails, the values in 'buf' can be anything. So the string is not guaranteed to be NULL terminated when xdbc_trace() is called. Reserve an extra byte, which will be zeroed automatically because 'buf' is a static variable, in order to avoid troubles, should it happen.

Vendor	Product	Versions
Linux	Linux	affected `aeb9dd1de98c1a5f2007ea5d2a154c1244caf8a0 - < e8fb0f13e45cf361fd06593d3cb2d89915cd3bd0` affected `aeb9dd1de98c1a5f2007ea5d2a154c1244caf8a0 - < 351c8d8650d1ccc006255fa01f98b6c6496a02e5` affected `aeb9dd1de98c1a5f2007ea5d2a154c1244caf8a0 - < df7c8aba7309f4dc55df94e06b67f576c0f52406` affected `aeb9dd1de98c1a5f2007ea5d2a154c1244caf8a0 - < a4a97ab3db5c081eb6e7dba91306adefb461e0bd`
Linux	Linux	affected `4.12` unaffected `0 - < 4.12` unaffected `5.15.99 - <= 5.15.` unaffected `6.1.16 - <= 6.1.` unaffected `6.2.3 - <= 6.2.*` +1 more versions

References

https://git.kernel.org/stable/c/e8fb0f13e45cf361fd06593d3cb2d89915cd3bd0

https://git.kernel.org/stable/c/351c8d8650d1ccc006255fa01f98b6c6496a02e5

https://git.kernel.org/stable/c/df7c8aba7309f4dc55df94e06b67f576c0f52406

https://git.kernel.org/stable/c/a4a97ab3db5c081eb6e7dba91306adefb461e0bd

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-53840

Description

Affected Products

References