Linux Kernel Vulnerability in SCSI Driver Affecting Multiple Versions

CVE-2023-53320

What is CVE-2023-53320?

A vulnerability in the Linux kernel's SCSI driver, specifically within the mpi3mr_get_all_tgt_info() function, can lead to buffer overflow issues. This results from incorrect assumptions in the calculation of entry lengths and improper memory handling. Key problems include using an incorrect header size for struct mpi3mr_device_map_info, excluding an entry when determining the valid entry length, using memcpy instead of direct substitution to copy device counts, and failing to specify the correct length in the sg_copy_from_buffer() function, leading to potential slab-out-of-bounds errors. Addressing these issues is critical for maintaining system integrity and preventing exploits.

References