CVE-2023-54104

Published: Dec 24, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: fsl_upm: Fix an off-by one test in fun_exec_op() 'op-cs' is copied in 'fun->mchip_number' which is used to access the 'mchip_offsets' and the 'rnb_gpio' arrays. These arrays have NAND_MAX_CHIPS elements, so the index must be below this limit. Fix the sanity check in order to avoid the NAND_MAX_CHIPS value. This would lead to out-of-bound accesses.

Vendor	Product	Versions
Linux	Linux	affected `54309d65776755bcdb9dcf3744cd764fc1e254ea - < 1f09d67d390647f83f8f9d26382b0daa43756e6f` affected `54309d65776755bcdb9dcf3744cd764fc1e254ea - < eb7a5e4d14c8659cb97db6863316280e15f67209` affected `54309d65776755bcdb9dcf3744cd764fc1e254ea - < f4b700c71802c81e6f9dce362ee7a0312c8377ba` affected `54309d65776755bcdb9dcf3744cd764fc1e254ea - < 49e57caf967a969f6b955c88805f2d160910aa12` affected `54309d65776755bcdb9dcf3744cd764fc1e254ea - < c6abce60338aa2080973cd95be0aedad528bb41f`
Linux	Linux	affected `5.9` unaffected `0 - < 5.9` unaffected `5.10.190 - <= 5.10.` unaffected `5.15.126 - <= 5.15.` unaffected `6.1.45 - <= 6.1.*` +2 more versions

References

https://git.kernel.org/stable/c/1f09d67d390647f83f8f9d26382b0daa43756e6f

https://git.kernel.org/stable/c/eb7a5e4d14c8659cb97db6863316280e15f67209

https://git.kernel.org/stable/c/f4b700c71802c81e6f9dce362ee7a0312c8377ba

https://git.kernel.org/stable/c/49e57caf967a969f6b955c88805f2d160910aa12

https://git.kernel.org/stable/c/c6abce60338aa2080973cd95be0aedad528bb41f

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-54104

Description

Affected Products

References