CVE-2023-53205

HIGH

Linux Kernel 5.13-5.15.121, 6.1.39-6.1., 6.4.4-6.4. - Out-of-bounds Write in KVM s390 diag 9c Handler

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: KVM: s390/diag: fix racy access of physical cpu number in diag 9c handler We do check for target CPU == -1, but this might change at the time we are going to use it. Hold the physical target CPU in a local variable to avoid out-of-bound accesses to the cpu arrays.

References (4)

Core 4

Core References

Patch

https://git.kernel.org/stable/c/a9ccf140a2a03a0ae82be4bdfbdd17bdaea72ff5

Patch

https://git.kernel.org/stable/c/86bfb18bad60fc468e5f112cbbd918462a8dd435

Patch

https://git.kernel.org/stable/c/dc7e0192c470a53d847c79a2796f9ac429477a26

Patch

https://git.kernel.org/stable/c/0bc380beb78aa352eadbc21d934dd9606fcee808

Scores

CVSS v3 7.8

EPSS 0.0015

EPSS Percentile 4.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (11)

Linux/Linux < 5.13

Linux/Linux 5.13

Linux/Linux 5.15.121 - 5.15.*

Linux/Linux 6.1.39 - 6.1.*

Linux/Linux 6.4.4 - 6.4.*

Linux/Linux 6.5

Linux/Linux 87e28a15c42cc592009c32a8c20e5789059027c2 - 0bc380beb78aa352eadbc21d934dd9606fcee808

Linux/Linux 87e28a15c42cc592009c32a8c20e5789059027c2 - 86bfb18bad60fc468e5f112cbbd918462a8dd435

Linux/Linux 87e28a15c42cc592009c32a8c20e5789059027c2 - a9ccf140a2a03a0ae82be4bdfbdd17bdaea72ff5

Linux/Linux 87e28a15c42cc592009c32a8c20e5789059027c2 - dc7e0192c470a53d847c79a2796f9ac429477a26

... and 1 more

Published Sep 15, 2025

Tracked Since Feb 18, 2026

CVE-2023-53205

Linux Kernel 5.13-5.15.121, 6.1.39-6.1.*, 6.4.4-6.4.* - Out-of-bounds Write in KVM s390 diag 9c Handler

Description

References (4)

Scores

Details

Linux Kernel 5.13-5.15.121, 6.1.39-6.1., 6.4.4-6.4. - Out-of-bounds Write in KVM s390 diag 9c Handler