CVE-2023-53272 | Linux Kernel up to 5.10.187/5.15.120/6.1.39/6.4.4 net ena_com.c ena_com out-of-bounds

A vulnerability categorized as critical has been discovered in Linux Kernel up to 5.10.187/5.15.120/6.1.39/6.4.4. The affected element is the function ena_com of the file build/linux/drivers/net/ethernet/amazon/ena/ena_com.c of the component net. Such manipulation leads to out-of-bounds read.

This vulnerability is traded as CVE-2023-53272. Access to the local network is required for this attack to succeed. There is no exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More