QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2023-54240

Back to search

CVE-2023-54240

Published: Dec 30, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtk_eth_soc: fix possible NULL pointer dereference in mtk_hwlro_get_fdir_all() rule_locs is allocated in ethtool_get_rxnfc and the size is determined by rule_cnt from user space. So rule_cnt needs to be check before using rule_locs to avoid NULL pointer dereference.

VendorProductVersions

Linux

Linux

affected
7aab747e5563ecbc9f3cb64ddea13fe7b9fee2bd - < 7776591e5ae2befff86579f68916a171971c6aab
affected
7aab747e5563ecbc9f3cb64ddea13fe7b9fee2bd - < 751b2e22a188b0c306029d094da29b6b8de31430
affected
7aab747e5563ecbc9f3cb64ddea13fe7b9fee2bd - < 653fbddbdfc6673bba01b13dae5a4384ad8f92ec
affected
7aab747e5563ecbc9f3cb64ddea13fe7b9fee2bd - < 75f2de75c1182e80708c932418e4895dbc88b68f
affected
7aab747e5563ecbc9f3cb64ddea13fe7b9fee2bd - < 072324cfab9b96071c0782f51f53cc5aea1e9d5b

+3 more versions

Linux

Linux

affected
4.9
unaffected
0 - < 4.9
unaffected
4.14.326 - <= 4.14.*
unaffected
4.19.295 - <= 4.19.*
unaffected
5.4.257 - <= 5.4.*

+5 more versions

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now