CVE-2023-53654
- Source
- https://cve.org/CVERecord?id=CVE-2023-53654
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53654.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-53654
- Downstream
- Related
- Published
- 2025-10-07T15:19:49.985Z
- Modified
- 2026-02-20T14:09:46.905288Z
- Summary
- octeontx2-af: Add validation before accessing cgx and lmac
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
octeontx2-af: Add validation before accessing cgx and lmac
with the addition of new MAC blocks like CN10K RPM and CN10KB RPM_USX, LMACs are noncontiguous and CGX blocks are also noncontiguous. But during RVU driver initialization, the driver is assuming they are contiguous and trying to access cgx or lmac with their id which is resulting in kernel panic.
This patch fixes the issue by adding proper checks.
[ 23.219150] pc : cgxlmacread+0x38/0x70 [ 23.219154] lr : rvuprogramchannels+0x3f0/0x498 [ 23.223852] sp : ffff000100d6fc80 [ 23.227158] x29: ffff000100d6fc80 x28: ffff00010009f880 x27: 000000000000005a [ 23.234288] x26: ffff000102586768 x25: 0000000000002500 x24: fffffffffff0f000
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53654.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/79ebb53772c95d3a6ae51b3c65f9985fdd430df6
- https://git.kernel.org/stable/c/a5485a943193e55c79150382e6461e8ea759e96e
- https://git.kernel.org/stable/c/b04872e15f3df62cb2fd530950f769626e1ef489
- https://git.kernel.org/stable/c/e425e2ba933618ee5ec8e4f3eb341efeb6c9ddef
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53654.json
- https://nvd.nist.gov/vuln/detail/CVE-2023-53654
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced91c6945ea1f9059fea886630d0fd8070740e2aafFixede425e2ba933618ee5ec8e4f3eb341efeb6c9ddefFixeda5485a943193e55c79150382e6461e8ea759e96eFixedb04872e15f3df62cb2fd530950f769626e1ef489Fixed79ebb53772c95d3a6ae51b3c65f9985fdd430df6
Affected versions
v5.*
v5.11
v5.12
v5.12-rc1
v5.12-rc1-dontuse
v5.12-rc2
v5.12-rc3
v5.12-rc4
v5.12-rc5
v5.12-rc6
v5.12-rc7
v5.12-rc8
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.100
v5.15.101
v5.15.102
v5.15.103
v5.15.104
v5.15.105
v5.15.106
v5.15.107
v5.15.108
v5.15.109
v5.15.11
v5.15.110
v5.15.111
v5.15.112
v5.15.113
v5.15.114
v5.15.115
v5.15.116
v5.15.117
v5.15.118
v5.15.119
v5.15.12
v5.15.120
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.75
v5.15.76
v5.15.77
v5.15.78
v5.15.79
v5.15.8
v5.15.80
v5.15.81
v5.15.82
v5.15.83
v5.15.84
v5.15.85
v5.15.86
v5.15.87
v5.15.88
v5.15.89
v5.15.9
v5.15.90
v5.15.91
v5.15.92
v5.15.93
v5.15.94
v5.15.95
v5.15.96
v5.15.97
v5.15.98
v5.15.99
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.4
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.4.1
v6.4.2
v6.4.3
Database specific
source
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53654.json"
vanir_signatures
[
{
"id": "CVE-2023-53654-1ae13bc3",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@79ebb53772c95d3a6ae51b3c65f9985fdd430df6",
"target": {
"file": "drivers/net/ethernet/marvell/octeontx2/af/cgx.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"135321250449517663140537805534425965572",
"79266273331443913842501852155383048833",
"111099105503659462567502732973528298890",
"94423846617931957609593541689643378638",
"74116501104400796728434945389644208584",
"182801768248574909327951138258026490753"
]
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Line"
},
{
"id": "CVE-2023-53654-40e1aa9f",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e425e2ba933618ee5ec8e4f3eb341efeb6c9ddef",
"target": {
"file": "drivers/net/ethernet/marvell/octeontx2/af/cgx.c",
"function": "cgx_lmac_read"
},
"digest": {
"function_hash": "202037019266440503911655180081746137514",
"length": 139.0
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Function"
},
{
"id": "CVE-2023-53654-4d5c99b4",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@79ebb53772c95d3a6ae51b3c65f9985fdd430df6",
"target": {
"file": "drivers/net/ethernet/marvell/octeontx2/af/cgx.c",
"function": "cgx_lmac_read"
},
"digest": {
"function_hash": "202037019266440503911655180081746137514",
"length": 139.0
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Function"
},
{
"id": "CVE-2023-53654-7bc64dba",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b04872e15f3df62cb2fd530950f769626e1ef489",
"target": {
"file": "drivers/net/ethernet/marvell/octeontx2/af/cgx.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"135321250449517663140537805534425965572",
"79266273331443913842501852155383048833",
"111099105503659462567502732973528298890",
"94423846617931957609593541689643378638",
"74116501104400796728434945389644208584",
"182801768248574909327951138258026490753"
]
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Line"
},
{
"id": "CVE-2023-53654-916b64cd",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b04872e15f3df62cb2fd530950f769626e1ef489",
"target": {
"file": "drivers/net/ethernet/marvell/octeontx2/af/cgx.c",
"function": "cgx_lmac_write"
},
"digest": {
"function_hash": "121592567422500012269076121656970965504",
"length": 154.0
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Function"
},
{
"id": "CVE-2023-53654-9ed0eb58",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e425e2ba933618ee5ec8e4f3eb341efeb6c9ddef",
"target": {
"file": "drivers/net/ethernet/marvell/octeontx2/af/cgx.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"135321250449517663140537805534425965572",
"79266273331443913842501852155383048833",
"111099105503659462567502732973528298890",
"94423846617931957609593541689643378638",
"74116501104400796728434945389644208584",
"182801768248574909327951138258026490753"
]
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Line"
},
{
"id": "CVE-2023-53654-a5457ef6",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@b04872e15f3df62cb2fd530950f769626e1ef489",
"target": {
"file": "drivers/net/ethernet/marvell/octeontx2/af/cgx.c",
"function": "cgx_lmac_read"
},
"digest": {
"function_hash": "202037019266440503911655180081746137514",
"length": 139.0
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Function"
},
{
"id": "CVE-2023-53654-ae59d51a",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@79ebb53772c95d3a6ae51b3c65f9985fdd430df6",
"target": {
"file": "drivers/net/ethernet/marvell/octeontx2/af/cgx.c",
"function": "cgx_lmac_write"
},
"digest": {
"function_hash": "121592567422500012269076121656970965504",
"length": 154.0
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Function"
},
{
"id": "CVE-2023-53654-b4f2c3cf",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a5485a943193e55c79150382e6461e8ea759e96e",
"target": {
"file": "drivers/net/ethernet/marvell/octeontx2/af/cgx.c",
"function": "cgx_lmac_read"
},
"digest": {
"function_hash": "202037019266440503911655180081746137514",
"length": 139.0
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Function"
},
{
"id": "CVE-2023-53654-c11d8e16",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a5485a943193e55c79150382e6461e8ea759e96e",
"target": {
"file": "drivers/net/ethernet/marvell/octeontx2/af/cgx.c",
"function": "cgx_lmac_write"
},
"digest": {
"function_hash": "121592567422500012269076121656970965504",
"length": 154.0
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Function"
},
{
"id": "CVE-2023-53654-c70d4c0a",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@a5485a943193e55c79150382e6461e8ea759e96e",
"target": {
"file": "drivers/net/ethernet/marvell/octeontx2/af/cgx.c"
},
"digest": {
"threshold": 0.9,
"line_hashes": [
"135321250449517663140537805534425965572",
"79266273331443913842501852155383048833",
"111099105503659462567502732973528298890",
"94423846617931957609593541689643378638",
"74116501104400796728434945389644208584",
"182801768248574909327951138258026490753"
]
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Line"
},
{
"id": "CVE-2023-53654-fee0e3fa",
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@e425e2ba933618ee5ec8e4f3eb341efeb6c9ddef",
"target": {
"file": "drivers/net/ethernet/marvell/octeontx2/af/cgx.c",
"function": "cgx_lmac_write"
},
"digest": {
"function_hash": "121592567422500012269076121656970965504",
"length": 154.0
},
"signature_version": "v1",
"deprecated": false,
"signature_type": "Function"
}
]
Git / github.com/gregkh/linux
Affected versions
v5.*
v5.12
v5.13
v5.13-rc1
v5.13-rc2
v5.13-rc3
v5.13-rc4
v5.13-rc5
v5.13-rc6
v5.13-rc7
v5.14
v5.14-rc1
v5.14-rc2
v5.14-rc3
v5.14-rc4
v5.14-rc5
v5.14-rc6
v5.14-rc7
v5.15
v5.15-rc1
v5.15-rc2
v5.15-rc3
v5.15-rc4
v5.15-rc5
v5.15-rc6
v5.15-rc7
v5.15.1
v5.15.10
v5.15.100
v5.15.101
v5.15.102
v5.15.103
v5.15.104
v5.15.105
v5.15.106
v5.15.107
v5.15.108
v5.15.109
v5.15.11
v5.15.110
v5.15.111
v5.15.112
v5.15.113
v5.15.114
v5.15.115
v5.15.116
v5.15.117
v5.15.118
v5.15.119
v5.15.12
v5.15.120
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.20
v5.15.21
v5.15.22
v5.15.23
v5.15.24
v5.15.25
v5.15.26
v5.15.27
v5.15.28
v5.15.29
v5.15.3
v5.15.30
v5.15.31
v5.15.32
v5.15.33
v5.15.34
v5.15.35
v5.15.36
v5.15.37
v5.15.38
v5.15.39
v5.15.4
v5.15.40
v5.15.41
v5.15.42
v5.15.43
v5.15.44
v5.15.45
v5.15.46
v5.15.47
v5.15.48
v5.15.49
v5.15.5
v5.15.50
v5.15.51
v5.15.52
v5.15.53
v5.15.54
v5.15.55
v5.15.56
v5.15.57
v5.15.58
v5.15.59
v5.15.6
v5.15.60
v5.15.61
v5.15.62
v5.15.63
v5.15.64
v5.15.65
v5.15.66
v5.15.67
v5.15.68
v5.15.69
v5.15.7
v5.15.70
v5.15.71
v5.15.72
v5.15.73
v5.15.74
v5.15.75
v5.15.76
v5.15.77
v5.15.78
v5.15.79
v5.15.8
v5.15.80
v5.15.81
v5.15.82
v5.15.83
v5.15.84
v5.15.85
v5.15.86
v5.15.87
v5.15.88
v5.15.89
v5.15.9
v5.15.90
v5.15.91
v5.15.92
v5.15.93
v5.15.94
v5.15.95
v5.15.96
v5.15.97
v5.15.98
v5.15.99
v5.16
v5.16-rc1
v5.16-rc2
v5.16-rc3
v5.16-rc4
v5.16-rc5
v5.16-rc6
v5.16-rc7
v5.16-rc8
v5.17
v5.17-rc1
v5.17-rc2
v5.17-rc3
v5.17-rc4
v5.17-rc5
v5.17-rc6
v5.17-rc7
v5.17-rc8
v5.18
v5.18-rc1
v5.18-rc2
v5.18-rc3
v5.18-rc4
v5.18-rc5
v5.18-rc6
v5.18-rc7
v5.19
v5.19-rc1
v5.19-rc2
v5.19-rc3
v5.19-rc4
v5.19-rc5
v5.19-rc6
v5.19-rc7
v5.19-rc8
v6.*
v6.0
v6.0-rc1
v6.0-rc2
v6.0-rc3
v6.0-rc4
v6.0-rc5
v6.0-rc6
v6.0-rc7
v6.1
v6.1-rc1
v6.1-rc2
v6.1-rc3
v6.1-rc4
v6.1-rc5
v6.1-rc6
v6.1-rc7
v6.1-rc8
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.16
v6.1.17
v6.1.18
v6.1.19
v6.1.2
v6.1.20
v6.1.21
v6.1.22
v6.1.23
v6.1.24
v6.1.25
v6.1.26
v6.1.27
v6.1.28
v6.1.29
v6.1.3
v6.1.30
v6.1.31
v6.1.32
v6.1.33
v6.1.34
v6.1.35
v6.1.36
v6.1.37
v6.1.38
v6.1.4
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.2
v6.2-rc1
v6.2-rc2
v6.2-rc3
v6.2-rc4
v6.2-rc5
v6.2-rc6
v6.2-rc7
v6.2-rc8
v6.3
v6.3-rc1
v6.3-rc2
v6.3-rc3
v6.3-rc4
v6.3-rc5
v6.3-rc6
v6.3-rc7
v6.4
v6.4-rc1
v6.4-rc2
v6.4-rc3
v6.4-rc4
v6.4-rc5
v6.4-rc6
v6.4-rc7
v6.4.1
v6.4.2
v6.4.3