CVE-2023-53420 ntfs: Fix panic about slab-out-of-bounds caused by ntfs_listxattr()

🗓️ 18 Sep 2025 16:04:03Reported by GoogleType

osv

osv🔗 osv.dev👁 1 Views

CVE-2023-53420: Linux kernel ntfs fixes slab-out-of-bounds in ntfs_listxattr by handling zero name_len.

Reporter	Title	Published	Views	Family All 86
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2023-299)	24 Aug 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2023-025 (ALASKERNEL-5.15-2023-025)	14 Aug 202300:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2025:03600-1)	15 Dec 202500:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2025:03634-1)	18 Oct 202500:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2025:3751-1)	24 Oct 202500:00	–	nessus
Tenable Nessus	SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2025:4057-1)	13 Nov 202500:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : kernel (SUSE-SU-2025:4132-1)	19 Nov 202500:00	–	nessus
Tenable Nessus	SUSE SLES15 Security Update : kernel (SUSE-SU-2025:4141-1)	20 Nov 202500:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2023-53420	25 Sep 202500:00	–	nessus
Amazon	Important: kernel	25 Aug 202300:00	–	amazon

Source	Link
git	www.git.kernel.org/stable/c/3c675ddffb17a8b1e32efad5c983254af18b12c2
git	www.git.kernel.org/stable/c/721b75ea2dfce53a8890dff92ae01afca8e74f88
git	www.git.kernel.org/stable/c/c86a2517df6c9304db8fb12b77136ec7a5d85994
git	www.git.kernel.org/stable/c/f3380d895e28a32632eb3609f5bd515adee4e5a1
github	www.github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53420.json
nvd	www.nvd.nist.gov/vuln/detail/CVE-2023-53420
git	www.git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git

02 Apr 2026 09:44Current

6.1Medium risk

Vulners AI Score6.1

CVSS 3.17.1

EPSS0.00027

linux kernel ntfs listxattr zero name length memory safety