CVE-2023-53066
In the Linux kernel, the following vulnerability has been resolved:
qed/qed_sriov: guard against NULL derefs from qed_iov_get_vf_info
We have to make sure that the info returned by the helper is valid before using it.
Found by Linux Verification Center (linuxtesting.org) with the SVACE static analysis tool.
| Software | From | Fixed in |
|---|---|---|
| linux / linux_kernel | 4.7 | 4.14.312 |
| linux / linux_kernel | 4.15 | 4.19.280 |
| linux / linux_kernel | 4.20 | 5.4.240 |
| linux / linux_kernel | 5.5 | 5.10.177 |
| linux / linux_kernel | 5.11 | 5.15.105 |
| linux / linux_kernel | 5.16 | 6.1.22 |
| linux / linux_kernel | 6.2 | 6.2.9 |
| linux / linux_kernel | 6.3-rc1 | 6.3-rc1.x |
| linux / linux_kernel | 6.3-rc2 | 6.3-rc2.x |
| linux / linux_kernel | 6.3-rc3 | 6.3-rc3.x |
- https://git.kernel.org/stable/c/25143b6a01d0cc5319edd3de22ffa2578b045550
- https://git.kernel.org/stable/c/39c3b9dd481c3afce9439b29bafe00444cb4406b
- https://git.kernel.org/stable/c/42d72c6d1edc9dc09a5d6f6695d257fa9e9cc270
- https://git.kernel.org/stable/c/7742c08e012eb65405e8304d100641638c5ff882
- https://git.kernel.org/stable/c/7bd0037822fd04da13721f77a42ee5a077d4c5fb
- https://git.kernel.org/stable/c/97ea704f39b5ded96f071e98701aa543f6f89683
- https://git.kernel.org/stable/c/b224b0cab3a66e93d414825065a2e667a1d28c32
- https://git.kernel.org/stable/c/e42d3bde4ec03c863259878dddaef5c351cca7ad
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime