CVE-2023-53034

Source
https://nvd.nist.gov/vuln/detail/CVE-2023-53034
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53034.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-53034
Downstream
Related
Published
2025-04-16T15:15:52Z
Modified
2025-08-09T20:01:27Z
Summary
[none]
Details

In the Linux kernel, the following vulnerability has been resolved:

ntbhwswitchtec: Fix shift-out-of-bounds in switchtecntbmwsettrans

There is a kernel API ntbmwcleartrans() would pass 0 to both addr and size. This would make xlatepos negative.

[ 23.734156] switchtec switchtec0: MW 0: part 0 addr 0x0000000000000000 size 0x0000000000000000 [ 23.734158] ================================================================================ [ 23.734172] UBSAN: shift-out-of-bounds in drivers/ntb/hw/mscc/ntbhwswitchtec.c:293:7 [ 23.734418] shift exponent -1 is negative

Ensuring xlate_pos is a positive or zero before BIT.

References

Affected packages