CVE-2023-54102

Dec. 24, 2025, 1:16 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Prevent lpfc_debugfs_lockstat_write() buffer overflow A static code analysis tool flagged the possibility of buffer overflow when using copy_from_user() for a debugfs entry. Currently, it is possible that copy_from_user() copies more bytes than what would fit in the mybuf char array. Add a min() restriction check between sizeof(mybuf) - 1 and nbytes passed from the userspace buffer to protect against buffer overflow.

Product(s) Impacted

Vendor Product Versions
Linux
  • Linux Kernel
  • *

Weaknesses

Common security weaknesses mapped to this vulnerability.

*CPE(s)

Affected systems and software identified for this CVE.

Type Vendor Product Version Update Edition Language Software Edition Target Software Target Hardware Other Information
a linux linux_kernel / / / / / / / /

References

https://git.kernel.org/stable/c/644a9d5e22761a41d5005a26996a643da96de962
https://git.kernel.org/stable/c/a9df88cb31dcbd72104ec5883f35cbc1fb587e47
https://git.kernel.org/stable/c/ad050f6cf681ebb850a9d4bc19474d3896476301
https://git.kernel.org/stable/c/c6087b82a9146826564a55c5ca0164cac40348f5
https://git.kernel.org/stable/c/e0e7faee3a7dd6f51350cda64997116a247eb045
https://git.kernel.org/stable/c/f91037487036e2d2f18d3c2481be6b9a366bde7f

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2025-12-24
CVE-2023-54102

Timeline

Published: Dec. 24, 2025, 1:16 p.m.
Last Modified: Dec. 24, 2025, 1:16 p.m.

Status : Received

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.