{ "affected": [ { "ranges": [ { "events": [ { "introduced": "c7a5899eb26e2a4d516d53f65b6dd67be2228041" }, { "fixed": "0725daaa9a879388ed312110f62dbd5ea2d75f8f" }, { "fixed": "5218af4ad5d8948faac19f71583bcd786c3852df" }, { "fixed": "1a351e26cc010d6991fbbd5701ac16581372e26f" }, { "fixed": "8222d5910dae08213b6d9d4bc9a7f8502855e624" } ], "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git", "type": "GIT" } ] } ], "database_specific": { "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53684.json" }, "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nxfrm: Zero padding when dumping algos and encap\n\nWhen copying data to user-space we should ensure that only valid\ndata is copied over. Padding in structures may be filled with\nrandom (possibly sensitve) data and should never be given directly\nto user-space.\n\nThis patch fixes the copying of xfrm algorithms and the encap\ntemplate in xfrm_user so that padding is zeroed.", "id": "CVE-2023-53684", "modified": "2026-04-01T23:08:36.910751743Z", "published": "2025-10-07T15:21:37.413Z", "references": [ { "type": "WEB", "url": "https://git.kernel.org/stable/c/0725daaa9a879388ed312110f62dbd5ea2d75f8f" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/1a351e26cc010d6991fbbd5701ac16581372e26f" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/5218af4ad5d8948faac19f71583bcd786c3852df" }, { "type": "WEB", "url": "https://git.kernel.org/stable/c/8222d5910dae08213b6d9d4bc9a7f8502855e624" }, { "type": "ADVISORY", "url": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53684.json" }, { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53684" }, { "type": "PACKAGE", "url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git" } ], "schema_version": "1.7.3", "summary": "xfrm: Zero padding when dumping algos and encap" }