CVE-2023-53142

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-53142
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53142.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-53142
Downstream
Related
Published
2025-05-02T15:56:12Z
Modified
2025-10-15T12:44:58.212072Z
Summary
ice: copy last block omitted in ice_get_module_eeprom()
Details

In the Linux kernel, the following vulnerability has been resolved:

ice: copy last block omitted in icegetmodule_eeprom()

icegetmoduleeeprom() is broken since commit e9c9692c8a81 ("ice: Reimplement module reads used by ethtool") In this refactor, icegetmoduleeeprom() reads the eeprom in blocks of size 8. But the condition that should protect the buffer overflow ignores the last block. The last block always contains zeros.

Bug uncovered by ethtool upstream commit 9538f384b535 ("netlink: eeprom: Defer page requests to individual parsers") After this commit, ethtool reads a block with length = 1; to read the SFF-8024 identifier value.

unpatched driver: $ ethtool -m enp65s0f0np0 offset 0x90 length 8 Offset Values ------ ------ 0x0090: 00 00 00 00 00 00 00 00 $ ethtool -m enp65s0f0np0 offset 0x90 length 12 Offset Values ------ ------ 0x0090: 00 00 01 a0 4d 65 6c 6c 00 00 00 00 $

$ ethtool -m enp65s0f0np0 Offset Values ------ ------ 0x0000: 11 06 06 00 00 00 00 00 00 00 00 00 00 00 00 00 0x0010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x0020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x0030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x0040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x0050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 0x0060: 00 00 00 00 00 00 00 00 00 00 00 00 00 01 08 00 0x0070: 00 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00

patched driver: $ ethtool -m enp65s0f0np0 offset 0x90 length 8 Offset Values ------ ------ 0x0090: 00 00 01 a0 4d 65 6c 6c $ ethtool -m enp65s0f0np0 offset 0x90 length 12 Offset Values ------ ------ 0x0090: 00 00 01 a0 4d 65 6c 6c 61 6e 6f 78 $ ethtool -m enp65s0f0np0 Identifier : 0x11 (QSFP28) Extended identifier : 0x00 Extended identifier description : 1.5W max. Power consumption Extended identifier description : No CDR in TX, No CDR in RX Extended identifier description : High Power Class (> 3.5 W) not enabled Connector : 0x23 (No separable connector) Transceiver codes : 0x88 0x00 0x00 0x00 0x00 0x00 0x00 0x00 Transceiver type : 40G Ethernet: 40G Base-CR4 Transceiver type : 25G Ethernet: 25G Base-CR CA-N Encoding : 0x05 (64B/66B) BR, Nominal : 25500Mbps Rate identifier : 0x00 Length (SMF,km) : 0km Length (OM3 50um) : 0m Length (OM2 50um) : 0m Length (OM1 62.5um) : 0m Length (Copper or Active cable) : 1m Transmitter technology : 0xa0 (Copper cable unequalized) Attenuation at 2.5GHz : 4db Attenuation at 5.0GHz : 5db Attenuation at 7.0GHz : 7db Attenuation at 12.9GHz : 10db ........ ....

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
e9c9692c8a81aacf0854f68ab54dc182f8be38e8
Fixed
c813f7a3161481483ae2077651b21bc217c419e0
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
e9c9692c8a81aacf0854f68ab54dc182f8be38e8
Fixed
90b40ab29298db3a4879c1d3c4e685184386bce6
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
e9c9692c8a81aacf0854f68ab54dc182f8be38e8
Fixed
8cfbdda65588e75bfbd93e5ee847efcb4796ad09
Type
GIT
Repo
https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events
Introduced
e9c9692c8a81aacf0854f68ab54dc182f8be38e8
Fixed
84cba1840e68430325ac133a11be06bfb2f7acd8

Affected versions

v5.*

v5.12
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.100
v5.15.101
v5.15.102
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.75
v5.15.76
v5.15.77
v5.15.78
v5.15.79
v5.15.8
v5.15.80
v5.15.81
v5.15.82
v5.15.83
v5.15.84
v5.15.85
v5.15.86
v5.15.87
v5.15.88
v5.15.89
v5.15.9
v5.15.90
v5.15.91
v5.15.92
v5.15.93
v5.15.94
v5.15.95
v5.15.96
v5.15.97
v5.15.98
v5.15.99
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8

v6.*

v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.3
v6.1.4
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.2.1
v6.2.2
v6.2.3
v6.2.4
v6.2.5
v6.2.6

Database specific

vanir_signatures

[
    {
        "signature_type": "Line",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c813f7a3161481483ae2077651b21bc217c419e0",
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/intel/ice/ice_ethtool.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "71162809013753365364097156172527372060",
                "78495581990228516839997210015270100362",
                "305580905165461429004947787589082210699",
                "190475586789984485781126147336706786582",
                "101814196114926485135626841336089957132",
                "247194525581628000602601778020739170321",
                "155037042068694636092270623791422155093",
                "142963013111930806014058056187194222933",
                "71459251946406121617140593048929165624"
            ]
        },
        "id": "CVE-2023-53142-24e19071"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@90b40ab29298db3a4879c1d3c4e685184386bce6",
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/intel/ice/ice_ethtool.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "71162809013753365364097156172527372060",
                "78495581990228516839997210015270100362",
                "305580905165461429004947787589082210699",
                "190475586789984485781126147336706786582",
                "101814196114926485135626841336089957132",
                "247194525581628000602601778020739170321",
                "155037042068694636092270623791422155093",
                "142963013111930806014058056187194222933",
                "71459251946406121617140593048929165624"
            ]
        },
        "id": "CVE-2023-53142-316065b7"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@90b40ab29298db3a4879c1d3c4e685184386bce6",
        "signature_version": "v1",
        "target": {
            "function": "ice_get_module_eeprom",
            "file": "drivers/net/ethernet/intel/ice/ice_ethtool.c"
        },
        "digest": {
            "function_hash": "177434931944391828206041461206221287311",
            "length": 1570.0
        },
        "id": "CVE-2023-53142-3e045dac"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@84cba1840e68430325ac133a11be06bfb2f7acd8",
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/intel/ice/ice_ethtool.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "71162809013753365364097156172527372060",
                "78495581990228516839997210015270100362",
                "305580905165461429004947787589082210699",
                "190475586789984485781126147336706786582",
                "101814196114926485135626841336089957132",
                "247194525581628000602601778020739170321",
                "155037042068694636092270623791422155093",
                "142963013111930806014058056187194222933",
                "71459251946406121617140593048929165624"
            ]
        },
        "id": "CVE-2023-53142-46145205"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@c813f7a3161481483ae2077651b21bc217c419e0",
        "signature_version": "v1",
        "target": {
            "function": "ice_get_module_eeprom",
            "file": "drivers/net/ethernet/intel/ice/ice_ethtool.c"
        },
        "digest": {
            "function_hash": "282795538511669514257340182412392650288",
            "length": 1572.0
        },
        "id": "CVE-2023-53142-4cbe058a"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@84cba1840e68430325ac133a11be06bfb2f7acd8",
        "signature_version": "v1",
        "target": {
            "function": "ice_get_module_eeprom",
            "file": "drivers/net/ethernet/intel/ice/ice_ethtool.c"
        },
        "digest": {
            "function_hash": "177434931944391828206041461206221287311",
            "length": 1570.0
        },
        "id": "CVE-2023-53142-b97241f1"
    },
    {
        "signature_type": "Line",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8cfbdda65588e75bfbd93e5ee847efcb4796ad09",
        "signature_version": "v1",
        "target": {
            "file": "drivers/net/ethernet/intel/ice/ice_ethtool.c"
        },
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "71162809013753365364097156172527372060",
                "78495581990228516839997210015270100362",
                "305580905165461429004947787589082210699",
                "190475586789984485781126147336706786582",
                "101814196114926485135626841336089957132",
                "247194525581628000602601778020739170321",
                "155037042068694636092270623791422155093",
                "142963013111930806014058056187194222933",
                "71459251946406121617140593048929165624"
            ]
        },
        "id": "CVE-2023-53142-c747722e"
    },
    {
        "signature_type": "Function",
        "deprecated": false,
        "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@8cfbdda65588e75bfbd93e5ee847efcb4796ad09",
        "signature_version": "v1",
        "target": {
            "function": "ice_get_module_eeprom",
            "file": "drivers/net/ethernet/intel/ice/ice_ethtool.c"
        },
        "digest": {
            "function_hash": "177434931944391828206041461206221287311",
            "length": 1570.0
        },
        "id": "CVE-2023-53142-e0e260b9"
    }
]

Linux / Kernel

Package

Name
Kernel

Affected ranges

Type
ECOSYSTEM
Events
Introduced
5.13.0
Fixed
5.15.103
Type
ECOSYSTEM
Events
Introduced
5.16.0
Fixed
6.1.20
Type
ECOSYSTEM
Events
Introduced
6.2.0
Fixed
6.2.7