CVE-2023-53521

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-53521

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53521.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-53521

Downstream

BELL-CVE-2023-53521

DEBIAN-CVE-2023-53521

OESA-2026-1341

RHBA-2025:0725

RHSA-2023:6583

RHSA-2023:7077

RHSA-2024:10772

SUSE-SU-2025:03614-1

SUSE-SU-2025:03615-1

SUSE-SU-2025:03628-1

SUSE-SU-2025:3716-1

SUSE-SU-2025:3761-1

UBUNTU-CVE-2023-53521

Related

Published

2025-10-01T11:46:08.131Z

Modified

2026-04-11T12:46:48.670060Z

Summary

scsi: ses: Fix slab-out-of-bounds in ses_intf_remove()

Details

In the Linux kernel, the following vulnerability has been resolved:

scsi: ses: Fix slab-out-of-bounds in sesintfremove()

A fix for:

BUG: KASAN: slab-out-of-bounds in sesintfremove+0x23f/0x270 [ses] Read of size 8 at addr ffff88a10d32e5d8 by task rmmod/12013

When edev->components is zero, accessing edev->component[0] members is wrong.

Database specific

{
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53521.json"
}

References

Affected packages

Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

Affected ranges

Type: GIT
Repo: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Events: Introduced

9927c68864e9c39cc317b4f559309ba29e642168

Fixed

76f7050537476ac062ec23a544fbca8270f2d08b

Fixed

87e47be38d205df338c52ead43f23b2864567423

Fixed

40af9a6deed723485e05b7d3255a28750692e8db

Fixed

8f9542cad6c27297c8391de3a659f0b7948495d0

Fixed

0595cdb587726b4f0fa780eb7462e3679d141e82

Fixed

82143faf01dda831b89eccef60c39ef8575ab08a

Fixed

2fb1fa8425cce2dc4dce298275d22d7077694b73

Fixed

578797f0c8cbc2e3ec5fc0dab87087b4c7073686

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53521.json"

Linux / Kernel

Package

Name: Kernel

Affected ranges

Type: ECOSYSTEM
Events: Introduced

2.6.25

Fixed

4.14.308

Type: ECOSYSTEM
Events: Introduced

4.15.0

Fixed

4.19.276

Type: ECOSYSTEM
Events: Introduced

4.20.0

Fixed

5.4.235

Type: ECOSYSTEM
Events: Introduced

5.5.0

Fixed

5.10.173

Type: ECOSYSTEM
Events: Introduced

5.11.0

Fixed

5.15.99

Type: ECOSYSTEM
Events: Introduced

5.16.0

Fixed

6.1.16

Type: ECOSYSTEM
Events: Introduced

6.2.0

Fixed

6.2.3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53521.json"