CVE-2023-53117

HIGH

Linux Kernel < 4.14.310 - Out-of-bounds Read in File Descriptor Close

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: fs: prevent out-of-bounds array speculation when closing a file descriptor Google-Bug-Id: 114199369

References (8)

Core 8

Core References

Patch

https://git.kernel.org/stable/c/f31cd5da636682caea424fa1c22679016cbfc16b

Patch

https://git.kernel.org/stable/c/3d5d9501b634fd268eb56428cda92cd317752d69

Patch

https://git.kernel.org/stable/c/6631c8da02cfad96c53b217cf647b511c7f34faf

Patch

https://git.kernel.org/stable/c/a759905de9cd6ec9ca08ceadf0920272772ed830

Patch

https://git.kernel.org/stable/c/f8cd8754a03a3748384ee438c572423643c9c315

Patch

https://git.kernel.org/stable/c/cec08b7d1ebcd3138d4658b3868ce26aeb1e8e06

Patch

https://git.kernel.org/stable/c/eea8e4e056a5ffbeb539a13854c017d5d62c756a

Patch

https://git.kernel.org/stable/c/609d54441493c99f21c1823dfd66fa7f4c512ff4

Scores

CVSS v3 7.1

EPSS 0.0017

EPSS Percentile 6.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Details

CWE

CWE-125

Status published

Products (20)

Linux/Linux < 2.6.12

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 3d5d9501b634fd268eb56428cda92cd317752d69

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 609d54441493c99f21c1823dfd66fa7f4c512ff4

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - 6631c8da02cfad96c53b217cf647b511c7f34faf

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - a759905de9cd6ec9ca08ceadf0920272772ed830

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - cec08b7d1ebcd3138d4658b3868ce26aeb1e8e06

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - eea8e4e056a5ffbeb539a13854c017d5d62c756a

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - f31cd5da636682caea424fa1c22679016cbfc16b

Linux/Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 - f8cd8754a03a3748384ee438c572423643c9c315

Linux/Linux 2.6.12

... and 10 more

Published May 02, 2025

Tracked Since Feb 18, 2026