VDB

DEBIAN-CVE-2023-53803

DEBIAN-CVE-2023-53803 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fix slab-out-of-bounds in ses_enclosure_data_process() A fix for: BUG: KASAN: slab-out-of-bounds in ses_enclosure_data_process+0x949/0xe30 [ses] Read of size 1 at addr ffff88a1b043a451 by task systemd-udevd/3271 Checking after (and before in next loop) addl_desc_ptr[1] is sufficient, we expect the size to be sanitized before first access to addl_desc_ptr[1]. Make sure we don't walk beyond end of page.

Affected Products

VendorProductVersions
Debian:12linux0, 0, 0
Debian:13linux0, 0, 0
Debian:11linux5.10.158-1, 0, 5.10.120-1
Debian:14linux0, 0, 0

Timeline

  • Dec 9, 2025 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›