CVE-2023-53442
BaseFortify
Publication date: 2025-09-18
Last updated on: 2025-12-11
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | From 5.16 (inc) to 6.1.47 (exc) |
| linux | linux_kernel | From 6.2 (inc) to 6.4.12 (exc) |
| linux | linux_kernel | 6.5 |
| linux | linux_kernel | 6.5 |
| linux | linux_kernel | 6.5 |
| linux | linux_kernel | 6.5 |
| linux | linux_kernel | 6.5 |
| linux | linux_kernel | 6.5 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-476 | The product dereferences a pointer that it expects to be valid but is NULL. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability occurs in the Linux kernel where the ice driver allows both ADQ (Application Device Queues) and switchdev mode to be enabled simultaneously, which is not supported. Enabling both at the same time can cause a nullptr dereference, leading to potential kernel crashes or instability. The fix involves checking if ADQ is active before switching to switchdev mode and vice versa to prevent this condition.
How can this vulnerability impact me? :
If this vulnerability is triggered, it can cause a nullptr dereference in the Linux kernel, which may lead to system crashes, instability, or denial of service. This can affect the reliability and availability of systems using the ice driver with ADQ and switchdev features enabled simultaneously.
What immediate steps should I take to mitigate this vulnerability?
To mitigate this vulnerability, ensure that ADQ and switchdev modes are not enabled simultaneously on your Linux system. Specifically, check if ADQ is active before switching to switchdev mode, and verify that switchdev is not active before enabling ADQ. This prevents the nullptr dereference issue caused by enabling both modes at the same time.