← voltar
CVE-2023-53661

bnxt: avoid overflow in bnxt_get_nvram_directory()

EPSS 0.1%
In the Linux kernel, the following vulnerability has been resolved: bnxt: avoid overflow in bnxt_get_nvram_directory() The value of an arithmetic expression is subject of possible overflow due to a failure to cast operands to a larger data type before performing arithmetic. Used macro for multiplication instead operator for avoiding overflow. Found by Security Code and Linux Verification Center (linuxtesting.org) with SVACE.
Produtos afetados
Linux · Linux

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://git.kernel.org/stable/c/17e0453a7523ad7a25bb47af941b150a6c66d7b6https://git.kernel.org/stable/c/7c6dddc239abe660598c49ec95ea0ed6399a4b2ahttps://git.kernel.org/stable/c/d5eaf2a6b077f32a477feb1e9e1c1f60605b460ehttps://git.kernel.org/stable/c/efb1a257513438d43f4335f09b2f684e8167cad2