CVE-2023-53117

HIGH

Linux Kernel < 4.14.310 - Out-of-Bounds Read

Title source: rule

Description

In the Linux kernel, the following vulnerability has been resolved: fs: prevent out-of-bounds array speculation when closing a file descriptor Google-Bug-Id: 114199369

References (8)

Core 8

Core References

Patch

https://git.kernel.org/stable/c/3d5d9501b634fd268eb56428cda92cd317752d69

Patch

https://git.kernel.org/stable/c/609d54441493c99f21c1823dfd66fa7f4c512ff4

Patch

https://git.kernel.org/stable/c/6631c8da02cfad96c53b217cf647b511c7f34faf

Patch

https://git.kernel.org/stable/c/a759905de9cd6ec9ca08ceadf0920272772ed830

Patch

https://git.kernel.org/stable/c/cec08b7d1ebcd3138d4658b3868ce26aeb1e8e06

Patch

https://git.kernel.org/stable/c/eea8e4e056a5ffbeb539a13854c017d5d62c756a

Patch

https://git.kernel.org/stable/c/f31cd5da636682caea424fa1c22679016cbfc16b

Patch

https://git.kernel.org/stable/c/f8cd8754a03a3748384ee438c572423643c9c315

Scores

CVSS v3 7.1

EPSS 0.0006

EPSS Percentile 17.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

CWE

CWE-125

Status published

Products (2)

linux/linux_kernel 6.3 rc1

linux/linux_kernel < 4.14.310

Published May 02, 2025

Tracked Since Feb 18, 2026