VDB

CVE-2023-54034

CVE-2023-54034 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: iommufd: Make sure to zero vfio_iommu_type1_info before copying to user Missed a zero initialization here. Most of the struct is filled with a copy_from_user(), however minsz for that copy is smaller than the actual struct by 8 bytes, thus we don't fill the padding.

EPSS 0.03% · 9.1th percentile

Risk Scores

EPSS Score
0.03%
9.1th percentile

Affected Products

VendorProductVersions
LinuxLinux6.3, 0, 6.2.3
linuxlinux_kernel6.2, 6.2

Timeline

  • Dec 24, 2025 EPSS Score
  • Dec 24, 2025 CVE Published
  • Dec 28, 2025 EPSS Score
  • Dec 31, 2025 EPSS Score
  • Jan 4, 2026 EPSS Score
  • Jan 8, 2026 EPSS Score
  • Jan 11, 2026 EPSS Score
  • Jan 15, 2026 EPSS Score
  • Jan 19, 2026 EPSS Score
  • Jan 23, 2026 EPSS Score
  • Jan 26, 2026 EPSS Score
  • Jan 30, 2026 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›