Main Vulnerability Database SB20250916273

SB20250916273 - Buffer overflow in Linux kernel arm64 kernel

Published: September 16, 2025 Updated: September 22, 2025

Security Bulletin ID SB20250916273

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Local access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Buffer overflow (CVE-ID: CVE-2023-53184)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to memory corruption within the vec_set_vector_length() function in arch/arm64/kernel/fpsimd.c. A local user can escalate privileges on the system.

Remediation

Install update from vendor's website.

References

https://git.kernel.org/stable/c/05d881b85b48c7ac6a7c92ce00aa916c4a84d052
https://git.kernel.org/stable/c/356e711640aea6ed145da9407499388b45264cb4
https://git.kernel.org/stable/c/807ada0e4aa3c9090c66009a99fa530c462012c9
https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.4.8