CVE-2023-53165

Sept. 15, 2025, 3:22 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: udf: Fix uninitialized array access for some pathnames For filenames that begin with . and are between 2 and 5 characters long, UDF charset conversion code would read uninitialized memory in the output buffer. The only practical impact is that the name may be prepended a "unification hash" when it is not actually needed but still it is good to fix this.

Product(s) Impacted

Vendor Product Versions
Linux
  • Kernel
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
a linux kernel / / / / / / / /

References

https://git.kernel.org/stable/c/008ae78d1e12efa904dc819b1ec83e2bca6b2c56
https://git.kernel.org/stable/c/028f6055c912588e6f72722d89c30b401bbcf013
https://git.kernel.org/stable/c/3f1368af47acf4d0b2a5fb0d2c0d6919d2234b6d
https://git.kernel.org/stable/c/4503f6fc95d6dee85fb2c54785848799e192c51c
https://git.kernel.org/stable/c/4d50988da0db167aed6f38685145cb5cd526c4f8
https://git.kernel.org/stable/c/985f9666698960dfc87a106d6314203fa90fda75
https://git.kernel.org/stable/c/a6824149809395dfbb5bc36bc7057cc3cb84e56d
https://git.kernel.org/stable/c/b37f998d357102e8eb0f8eeb33f03fff22e49cbf

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-09-15
CVE-2023-53165

Timeline

Published: Sept. 15, 2025, 2:15 p.m.
Last Modified: Sept. 15, 2025, 3:22 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.