CVE-2023-53516

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-53516
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53516.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-53516
Downstream
Related
Published
2025-10-01T11:46:03Z
Modified
2025-10-16T17:52:41.495449Z
Summary
macvlan: add forgotten nla_policy for IFLA_MACVLAN_BC_CUTOFF
Details

In the Linux kernel, the following vulnerability has been resolved:

macvlan: add forgotten nlapolicy for IFLAMACVLANBCCUTOFF

The previous commit 954d1fa1ac93 ("macvlan: Add netlink attribute for broadcast cutoff") added one additional attribute named IFLAMACVLANBC_CUTOFF to allow broadcast cutfoff.

However, it forgot to describe the nlapolicy at macvlanpolicy (drivers/net/macvlan.c). Hence, this suppose NLA_S32 (4 bytes) integer can be faked as empty (0 bytes) by a malicious user, which could leads to OOB in heap just like CVE-2023-3773.

To fix it, this commit just completes the nlapolicy description for IFLAMACVLANBCCUTOFF. This enforces the length check and avoids the potential OOB read.

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
954d1fa1ac93aa8a66f7d9a9ba545cf7f020d348
Fixed
79f44709aa7a744fbfbadd4aef678443290c6991
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
954d1fa1ac93aa8a66f7d9a9ba545cf7f020d348
Fixed
55cef78c244d0d076f5a75a35530ca63c92f4426

Affected versions

v6.*

v6.3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.4.1
v6.4.2
v6.4.3
v6.4.4
v6.4.5
v6.4.6
v6.4.7
v6.5-rc1
v6.5-rc2

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
6.4.0
Fixed
6.4.8