CVE-2023-53516

UNKNOWN 0.0

macvlan: add forgotten nla_policy for IFLA_MACVLAN_BC_CUTOFF

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: macvlan: add forgotten nla_policy for IFLA_MACVLAN_BC_CUTOFF The previous commit 954d1fa1ac93 ("macvlan: Add netlink attribute for broadcast cutoff") added one additional attribute named IFLA_MACVLAN_BC_CUTOFF to allow broadcast cutfoff. However, it forgot to describe the nla_policy at macvlan_policy (drivers/net/macvlan.c). Hence, this suppose NLA_S32 (4 bytes) integer can be faked as empty (0 bytes) by a malicious user, which could leads to OOB in heap just like CVE-2023-3773. To fix it, this commit just completes the nla_policy description for IFLA_MACVLAN_BC_CUTOFF. This enforces the length check and avoids the potential OOB read.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Oct 1, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new unknown vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

954d1fa1ac93aa8a66f7d9a9ba545cf7f020d348 < 79f44709aa7a744fbfbadd4aef678443290c6991 954d1fa1ac93aa8a66f7d9a9ba545cf7f020d348 < 55cef78c244d0d076f5a75a35530ca63c92f4426

Linux / Linux

6.4

References

NVD ↗ CVE.org ↗ EPSS Data ↗

git.kernel.org: https://git.kernel.org/stable/c/79f44709aa7a744fbfbadd4aef678443290c6991 git.kernel.org: https://git.kernel.org/stable/c/55cef78c244d0d076f5a75a35530ca63c92f4426