CVE-2023-53125

Published: May 2, 2025Modified: Nov 10, 2025

5.5

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

In the Linux kernel, the following vulnerability has been resolved: net: usb: smsc75xx: Limit packet length to skb->len Packet length retrieved from skb data may be larger than the actual socket buffer length (up to 9026 bytes). In such case the cloned skb passed up the network stack will leak kernel memory contents.

Affected (16)

Products: Linux: Linux Kernel

Linux

1 product

Linux Kernel

Configuration A

16 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	From 2.6.35 to 4.14.311
Linux Linux Kernel	From 4.15 to 4.19.279
Linux Linux Kernel	From 4.20 to 5.4.238
Linux Linux Kernel	From 5.11 to 5.15.104
Linux Linux Kernel	From 5.16 to 6.1.21
Linux Linux Kernel	From 5.5 to 5.10.176
Linux Linux Kernel	From 6.2 to 6.2.8
Linux Linux Kernel	Version 2.6.34
Linux Linux Kernel	Version 2.6.34 rc2
Linux Linux Kernel	Version 2.6.34 rc3
Linux Linux Kernel	Version 2.6.34 rc4
Linux Linux Kernel	Version 2.6.34 rc5
Linux Linux Kernel	Version 2.6.34 rc6
Linux Linux Kernel	Version 2.6.34 rc7
Linux Linux Kernel	Version 6.3 rc1
Linux Linux Kernel	Version 6.3 rc2