CVE-2023-53315 wifi: ath11k: Fix SKB corruption in REO destination ring

🗓️ 16 Sep 2025 16:11:52Reported by LinuxType

Fix SKB corruption in ath11k REO dest ring by starting IDR at 1 and reserving buffer id 0 for errors with a sanity check before processing SKB.

Reporter	Title	Published	Views	Family All 54
AstraLinux	Astra Linux - уязвимость в linux-5.15, linux-5.10	20 May 202605:53	–	astralinux
CNNVD	Linux kernel 安全漏洞	16 Sep 202500:00	–	cnnvd
CVE	CVE-2023-53315	16 Sep 202516:11	–	cve
Debian CVE	CVE-2023-53315	16 Sep 202516:11	–	debiancve
EUVD	EUVD-2023-59946	3 Oct 202520:07	–	euvd
NVD	CVE-2023-53315	16 Sep 202517:15	–	nvd
OSV	BELL-CVE-2023-53315	17 Sep 202506:04	–	osv
OSV	CLSA-2026-1777616064 kernel: Fix of 260 CVEs	1 May 202609:15	–	osv
OSV	CVE-2023-53315 wifi: ath11k: Fix SKB corruption in REO destination ring	16 Sep 202516:11	–	osv
OSV	DEBIAN-CVE-2023-53315	16 Sep 202517:15	–	osv

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/wireless/ath/ath11k/dp_rx.c"
    ],
    "versions": [
      {
        "version": "d5c65159f2895379e11ca13f62feabe93278985d",
        "lessThan": "866921dc06b94df91acfcf9359b57da943ed99b3",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d5c65159f2895379e11ca13f62feabe93278985d",
        "lessThan": "3d3f8fe01a01d94a17fe1ae0d2e894049a972717",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d5c65159f2895379e11ca13f62feabe93278985d",
        "lessThan": "068fd06148fbf0af95bb08dc77cff34ee679fdbc",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d5c65159f2895379e11ca13f62feabe93278985d",
        "lessThan": "67459491f78146bcf7d93596e5b709d063dff5d8",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "d5c65159f2895379e11ca13f62feabe93278985d",
        "lessThan": "f9fff67d2d7ca6fa8066132003a3deef654c55b1",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "drivers/net/wireless/ath/ath11k/dp_rx.c"
    ],
    "versions": [
      {
        "version": "5.6",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.6",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.10.181",
        "lessThanOrEqual": "5.10.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.113",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.30",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.3.4",
        "lessThanOrEqual": "6.3.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.4",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/67459491f78146bcf7d93596e5b709d063dff5d8
git	www.git.kernel.org/stable/c/068fd06148fbf0af95bb08dc77cff34ee679fdbc
git	www.git.kernel.org/stable/c/866921dc06b94df91acfcf9359b57da943ed99b3
git	www.git.kernel.org/stable/c/f9fff67d2d7ca6fa8066132003a3deef654c55b1
git	www.git.kernel.org/stable/c/3d3f8fe01a01d94a17fe1ae0d2e894049a972717

11 May 2026 19:42Current

EPSS0.00027