CVE-2023-53516
BaseFortify
Publication date: 2025-10-01
Last updated on: 2026-04-06
Assigner: kernel.org
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| linux | linux_kernel | From 5.15.160 (inc) to 5.16 (inc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-UNKNOWN |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in the Linux kernel's macvlan driver involves a missing policy definition (nla_policy) for the IFLA_MACVLAN_BC_CUTOFF attribute. Without this policy, a malicious user can send a malformed netlink message with this attribute as empty (0 bytes) instead of the expected 4-byte integer, potentially causing an out-of-bounds (OOB) read in the heap memory, similar to a previous vulnerability CVE-2023-3773. The fix adds the missing policy to enforce proper length checks and prevent this OOB read.
How can this vulnerability impact me? :
This vulnerability can allow a malicious user to cause an out-of-bounds read in kernel heap memory by sending malformed netlink messages to the macvlan driver. This could potentially lead to system instability, crashes, or information disclosure due to improper memory access.