CVE-2023-53465
HIGHLinux kernel - Buffer Overflow
Title source: llmDescription
In the Linux kernel, the following vulnerability has been resolved: soundwire: qcom: fix storing port config out-of-bounds The 'qcom_swrm_ctrl->pconfig' has size of QCOM_SDW_MAX_PORTS (14), however we index it starting from 1, not 0, to match real port numbers. This can lead to writing port config past 'pconfig' bounds and overwriting next member of 'qcom_swrm_ctrl' struct. Reported also by smatch: drivers/soundwire/qcom.c:1269 qcom_swrm_get_port_config() error: buffer overflow 'ctrl->pconfig' 14 <= 14
References (4)
Scores
CVSS v3
7.1
EPSS
0.0002
EPSS Percentile
3.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Classification
CWE
CWE-125
Status
published
Affected Products (1)
linux/linux_kernel
< 5.15.121
Timeline
Published
Oct 01, 2025
Tracked Since
Feb 18, 2026