CVE-2023-53661 PUBLISHED

bnxt: avoid overflow in bnxt_get_nvram_directory()

Assigner: Linux
Reserved: 07.10.2025 Published: 07.10.2025 Updated: 07.10.2025

In the Linux kernel, the following vulnerability has been resolved:

bnxt: avoid overflow in bnxt_get_nvram_directory()

The value of an arithmetic expression is subject of possible overflow due to a failure to cast operands to a larger data type before performing arithmetic. Used macro for multiplication instead operator for avoiding overflow.

Found by Security Code and Linux Verification Center (linuxtesting.org) with SVACE.

Product Status

Vendor	Linux
Product	Linux
Versions	Default: unaffected affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to d5eaf2a6b077f32a477feb1e9e1c1f60605b460e (excl.) affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to efb1a257513438d43f4335f09b2f684e8167cad2 (excl.) affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to 17e0453a7523ad7a25bb47af941b150a6c66d7b6 (excl.) affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to 7c6dddc239abe660598c49ec95ea0ed6399a4b2a (excl.)

Vendor	Linux
Product	Linux
Versions	Default: affected unaffected from 5.15.113 to 5.15.* (incl.) unaffected from 6.1.30 to 6.1.* (incl.) unaffected from 6.3.4 to 6.3.* (incl.) unaffected from 6.4 to * (incl.)

CVE-2023-53661 PUBLISHED

bnxt: avoid overflow in bnxt_get_nvram_directory()

Product Status

References