← back
CVE-2023-53661

bnxt: avoid overflow in bnxt_get_nvram_directory()

EPSS 0.1%
In the Linux kernel, the following vulnerability has been resolved: bnxt: avoid overflow in bnxt_get_nvram_directory() The value of an arithmetic expression is subject of possible overflow due to a failure to cast operands to a larger data type before performing arithmetic. Used macro for multiplication instead operator for avoiding overflow. Found by Security Code and Linux Verification Center (linuxtesting.org) with SVACE.
Affected products
Linux · Linux

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://git.kernel.org/stable/c/17e0453a7523ad7a25bb47af941b150a6c66d7b6https://git.kernel.org/stable/c/7c6dddc239abe660598c49ec95ea0ed6399a4b2ahttps://git.kernel.org/stable/c/d5eaf2a6b077f32a477feb1e9e1c1f60605b460ehttps://git.kernel.org/stable/c/efb1a257513438d43f4335f09b2f684e8167cad2