VDB

DEBIAN-CVE-2023-53840

DEBIAN-CVE-2023-53840 PUBLISHED

In the Linux kernel, the following vulnerability has been resolved: usb: early: xhci-dbc: Fix a potential out-of-bound memory access If xdbc_bulk_write() fails, the values in 'buf' can be anything. So the string is not guaranteed to be NULL terminated when xdbc_trace() is called. Reserve an extra byte, which will be zeroed automatically because 'buf' is a static variable, in order to avoid troubles, should it happen.

Affected Products

VendorProductVersions
Debian:13linux0, 0, 0
Debian:11linux*, *, 5.16.11-1
Debian:14linux0, 0, 0
Debian:12linux0, 0, 0

Timeline

  • Dec 9, 2025 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›