[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-53513":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":27,"aliases":28,"duplicate_of":9,"upstream":29,"downstream":30,"duplicates":61,"related":62,"reserved_at":9,"published_at":65,"modified_at":66,"state":67,"summary":68,"references_raw":77,"kevs":96,"epss":97,"epss_history":100,"metrics":369,"affected":375},"CVE-2023-53513","In the Linux kernel, the following vulnerability has been resolved:\n\nnbd: fix incomplete validation of ioctl arg\n\nWe tested and found an alarm caused by nbd_ioctl arg without verification.\nThe UBSAN warning calltrace like below:\n\nUBSAN: Undefined behaviour in fs/buffer.c:1709:35\nsigned integer overflow:\n-9223372036854775808 - 1 cannot be represented in type 'long long int'\nCPU: 3 PID: 2523 Comm: syz-executor.0 Not tainted 4.19.90 #1\nHardware name: linux,dummy-virt (DT)\nCall trace:\n dump_backtrace+0x0/0x3f0 arch/arm64/kernel/time.c:78\n show_stack+0x28/0x38 arch/arm64/kernel/traps.c:158\n __dump_stack lib/dump_stack.c:77 [inline]\n dump_stack+0x170/0x1dc lib/dump_stack.c:118\n ubsan_epilogue+0x18/0xb4 lib/ubsan.c:161\n handle_overflow+0x188/0x1dc lib/ubsan.c:192\n __ubsan_handle_sub_overflow+0x34/0x44 lib/ubsan.c:206\n __block_write_full_page+0x94c/0xa20 fs/buffer.c:1709\n block_write_full_page+0x1f0/0x280 fs/buffer.c:2934\n blkdev_writepage+0x34/0x40 fs/block_dev.c:607\n __writepage+0x68/0xe8 mm/page-writeback.c:2305\n write_cache_pages+0x44c/0xc70 mm/page-writeback.c:2240\n generic_writepages+0xdc/0x148 mm/page-writeback.c:2329\n blkdev_writepages+0x2c/0x38 fs/block_dev.c:2114\n do_writepages+0xd4/0x250 mm/page-writeback.c:2344\n\nThe reason for triggering this warning is __block_write_full_page()\n-> i_size_read(inode) - 1 overflow.\ninode->i_size is assigned in __nbd_ioctl() -> nbd_set_size() -> bytesize.\nWe think it is necessary to limit the size of arg to prevent errors.\n\nMoreover, __nbd_ioctl() -> nbd_add_socket(), arg will be cast to int.\nAssuming the value of arg is 0x80000000000000001) (on a 64-bit machine),\nit will become 1 after the coercion, which will return unexpected results.\n\nFix it by adding checks to prevent passing in too large numbers.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-674","Uncontrolled Recursion","The product does not properly control the amount of recursion that takes place,  consuming excessive resources, such as allocated memory or the program stack.","weakness","Draft","Class",[19,23],{"id":20,"name":21,"techniques":22},"CAPEC-230","Serialized Data with Nested Payloads",[],{"id":24,"name":25,"techniques":26},"CAPEC-231","Oversized Serialized Data Payloads",[],[],[],[],[31,33,35,37,39,41,43,45,47,49,51,53,55,57,59],{"_key":32},"SUSE-SU-2025:03628-1",{"_key":34},"SUSE-SU-2025:3716-1",{"_key":36},"RHSA-2025:22387",{"_key":38},"RHSA-2025:22388",{"_key":40},"RHSA-2025:23424",{"_key":42},"RHSA-2025:23426",{"_key":44},"RHSA-2026:0532",{"_key":46},"RHSA-2026:0533",{"_key":48},"RHSA-2026:3388",{"_key":50},"RHSA-2026:0536",{"_key":52},"DEBIAN-CVE-2023-53513",{"_key":54},"RHSA-2025:22095",{"_key":56},"RHSA-2025:22124",{"_key":58},"UBUNTU-CVE-2023-53513",{"_key":60},"RHSA-2024:2394",[],[63,64],{"_key":32},{"_key":34},"2025-10-01T11:46:01.717Z","2026-05-11T19:46:25.690Z","Analyzed",{"cisa_kev":69,"cisa_ransomware":69,"cisa_vendor":9,"epss_severity":70,"epss_score":71,"severity":72,"severity_score":73,"severity_version":74,"severity_source":75,"severity_vector":76,"severity_status":67},false,"low",0.00015,"medium",5.5,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",[78,84,88,92],{"url":79,"sources":80,"tags":82},"https://git.kernel.org/stable/c/52851d0c3354b397c11d31dfeb8b2a2fc85a0002",[81,75],"cve.org",[83],"Patch",{"url":85,"sources":86,"tags":87},"https://git.kernel.org/stable/c/fab766c8a1aff715bce7075aab40e780266f8e1a",[81,75],[83],{"url":89,"sources":90,"tags":91},"https://git.kernel.org/stable/c/ffb75ffaa68723276365d0f9d00b03362b750657",[81,75],[83],{"url":93,"sources":94,"tags":95},"https://git.kernel.org/stable/c/55793ea54d77719a071b1ccc05a05056e3b5e009",[81,75],[83],[],{"date":98,"score":71,"percentile":99},"2026-06-04",0.03214,[101,105,108,111,114,117,120,123,125,128,131,134,137,140,143,146,149,152,155,158,161,164,167,170,173,176,179,182,185,188,191,194,197,200,203,207,210,213,216,219,222,225,228,231,234,237,240,243,246,249,252,255,258,261,264,266,269,272,275,278,281,284,287,290,293,296,299,301,304,307,310,313,316,319,322,325,327,329,332,335,338,341,344,347,350,354,357,360,362,366],{"date":102,"score":103,"percentile":104},"2025-11-04",0.00025,0.0559,{"date":106,"score":103,"percentile":107},"2025-11-05",0.05594,{"date":109,"score":103,"percentile":110},"2025-11-06",0.05714,{"date":112,"score":103,"percentile":113},"2025-11-07",0.05728,{"date":115,"score":103,"percentile":116},"2025-11-08",0.05726,{"date":118,"score":103,"percentile":119},"2025-11-09",0.05718,{"date":121,"score":103,"percentile":122},"2025-11-10",0.05696,{"date":124,"score":103,"percentile":116},"2025-11-11",{"date":126,"score":103,"percentile":127},"2025-11-12",0.05772,{"date":129,"score":103,"percentile":130},"2025-11-13",0.05802,{"date":132,"score":103,"percentile":133},"2025-11-14",0.05838,{"date":135,"score":103,"percentile":136},"2025-11-15",0.05864,{"date":138,"score":103,"percentile":139},"2025-11-16",0.05873,{"date":141,"score":103,"percentile":142},"2025-11-17",0.05865,{"date":144,"score":103,"percentile":145},"2025-11-18",0.03481,{"date":147,"score":103,"percentile":148},"2025-11-19",0.03531,{"date":150,"score":103,"percentile":151},"2025-11-20",0.03599,{"date":153,"score":103,"percentile":154},"2025-11-21",0.05927,{"date":156,"score":103,"percentile":157},"2025-11-22",0.05876,{"date":159,"score":103,"percentile":160},"2025-11-23",0.05851,{"date":162,"score":103,"percentile":163},"2025-11-24",0.05844,{"date":165,"score":103,"percentile":166},"2025-11-25",0.05836,{"date":168,"score":103,"percentile":169},"2025-11-26",0.05862,{"date":171,"score":103,"percentile":172},"2025-11-27",0.05869,{"date":174,"score":103,"percentile":175},"2025-11-28",0.05846,{"date":177,"score":103,"percentile":178},"2025-11-29",0.05889,{"date":180,"score":103,"percentile":181},"2025-11-30",0.05878,{"date":183,"score":103,"percentile":184},"2025-12-01",0.05954,{"date":186,"score":103,"percentile":187},"2025-12-02",0.05969,{"date":189,"score":103,"percentile":190},"2025-12-03",0.05981,{"date":192,"score":103,"percentile":193},"2025-12-04",0.05945,{"date":195,"score":103,"percentile":196},"2025-12-05",0.05992,{"date":198,"score":103,"percentile":199},"2025-12-06",0.05999,{"date":201,"score":103,"percentile":202},"2025-12-07",0.06003,{"date":204,"score":205,"percentile":206},"2025-12-08",0.00026,0.06461,{"date":208,"score":205,"percentile":209},"2025-12-09",0.06518,{"date":211,"score":205,"percentile":212},"2025-12-10",0.06589,{"date":214,"score":205,"percentile":215},"2025-12-11",0.0659,{"date":217,"score":205,"percentile":218},"2025-12-12",0.06601,{"date":220,"score":205,"percentile":221},"2025-12-13",0.06627,{"date":223,"score":205,"percentile":224},"2025-12-14",0.06609,{"date":226,"score":205,"percentile":227},"2025-12-15",0.06574,{"date":229,"score":205,"percentile":230},"2025-12-16",0.06597,{"date":232,"score":205,"percentile":233},"2025-12-17",0.06685,{"date":235,"score":205,"percentile":236},"2025-12-18",0.06745,{"date":238,"score":205,"percentile":239},"2025-12-19",0.06739,{"date":241,"score":205,"percentile":242},"2025-12-20",0.06735,{"date":244,"score":205,"percentile":245},"2025-12-21",0.06724,{"date":247,"score":205,"percentile":248},"2025-12-22",0.06679,{"date":250,"score":205,"percentile":251},"2025-12-23",0.06675,{"date":253,"score":205,"percentile":254},"2025-12-24",0.06705,{"date":256,"score":205,"percentile":257},"2025-12-25",0.06768,{"date":259,"score":205,"percentile":260},"2025-12-26",0.06775,{"date":262,"score":205,"percentile":263},"2025-12-27",0.06787,{"date":265,"score":205,"percentile":257},"2025-12-28",{"date":267,"score":205,"percentile":268},"2025-12-29",0.06748,{"date":270,"score":205,"percentile":271},"2025-12-30",0.0673,{"date":273,"score":205,"percentile":274},"2025-12-31",0.06777,{"date":276,"score":205,"percentile":277},"2026-01-01",0.06846,{"date":279,"score":205,"percentile":280},"2026-01-02",0.06839,{"date":282,"score":205,"percentile":283},"2026-01-03",0.06829,{"date":285,"score":205,"percentile":286},"2026-01-04",0.06681,{"date":288,"score":205,"percentile":289},"2026-01-05",0.06631,{"date":291,"score":205,"percentile":292},"2026-01-06",0.0663,{"date":294,"score":205,"percentile":295},"2026-01-07",0.06654,{"date":297,"score":205,"percentile":298},"2026-01-08",0.0671,{"date":300,"score":205,"percentile":245},"2026-01-09",{"date":302,"score":205,"percentile":303},"2026-01-10",0.06761,{"date":305,"score":205,"percentile":306},"2026-01-11",0.06749,{"date":308,"score":205,"percentile":309},"2026-01-12",0.06716,{"date":311,"score":205,"percentile":312},"2026-01-13",0.06699,{"date":314,"score":205,"percentile":315},"2026-01-14",0.0682,{"date":317,"score":205,"percentile":318},"2026-01-15",0.06821,{"date":320,"score":205,"percentile":321},"2026-01-16",0.06831,{"date":323,"score":205,"percentile":324},"2026-01-17",0.06844,{"date":326,"score":205,"percentile":315},"2026-01-18",{"date":328,"score":205,"percentile":274},"2026-01-19",{"date":330,"score":205,"percentile":331},"2026-01-20",0.06737,{"date":333,"score":205,"percentile":334},"2026-01-21",0.06734,{"date":336,"score":205,"percentile":337},"2026-01-22",0.06713,{"date":339,"score":205,"percentile":340},"2026-01-23",0.06781,{"date":342,"score":205,"percentile":343},"2026-01-24",0.06823,{"date":345,"score":205,"percentile":346},"2026-01-25",0.06802,{"date":348,"score":205,"percentile":349},"2026-01-26",0.06788,{"date":351,"score":352,"percentile":353},"2026-01-27",0.00017,0.03319,{"date":355,"score":352,"percentile":356},"2026-01-28",0.03305,{"date":358,"score":352,"percentile":359},"2026-01-29",0.03326,{"date":361,"score":352,"percentile":359},"2026-01-30",{"date":363,"score":364,"percentile":365},"2026-01-31",0.00022,0.05045,{"date":367,"score":364,"percentile":368},"2026-02-01",0.05144,[370],{"source":75,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":371,"cvss_v4_0":9},{"baseScore":73,"baseSeverity":372,"vectorString":76,"impactScore":373,"exploitabilityScore":374},"MEDIUM",6,4.6,[376,399],{"ecosystem":9,"name":377,"vendor":378,"product":378,"cpe_part":379,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":380},"Linux","linux","a",[381,388,391,394,397],{"version":382,"is_range":383,"range_type":81,"version_start":384,"version_start_type":385,"version_end":386,"version_end_type":387,"fixed_in":9},">= b9c495bb6d8edc719fd23af2ac67de8303cfc1e8, \u003C 52851d0c3354b397c11d31dfeb8b2a2fc85a0002",true,"b9c495bb6d8edc719fd23af2ac67de8303cfc1e8","including","52851d0c3354b397c11d31dfeb8b2a2fc85a0002","excluding",{"version":389,"is_range":383,"range_type":81,"version_start":384,"version_start_type":385,"version_end":390,"version_end_type":387,"fixed_in":9},">= b9c495bb6d8edc719fd23af2ac67de8303cfc1e8, \u003C fab766c8a1aff715bce7075aab40e780266f8e1a","fab766c8a1aff715bce7075aab40e780266f8e1a",{"version":392,"is_range":383,"range_type":81,"version_start":384,"version_start_type":385,"version_end":393,"version_end_type":387,"fixed_in":9},">= b9c495bb6d8edc719fd23af2ac67de8303cfc1e8, \u003C ffb75ffaa68723276365d0f9d00b03362b750657","ffb75ffaa68723276365d0f9d00b03362b750657",{"version":395,"is_range":383,"range_type":81,"version_start":384,"version_start_type":385,"version_end":396,"version_end_type":387,"fixed_in":9},">= b9c495bb6d8edc719fd23af2ac67de8303cfc1e8, \u003C 55793ea54d77719a071b1ccc05a05056e3b5e009","55793ea54d77719a071b1ccc05a05056e3b5e009",{"version":398,"is_range":69,"range_type":81,"version_start":398,"version_start_type":385,"version_end":398,"version_end_type":385,"fixed_in":9},"4.1",{"ecosystem":9,"name":400,"vendor":378,"product":401,"cpe_part":402,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":403},"linux kernel","linux_kernel","o",[404,408,412],{"version":405,"is_range":383,"range_type":406,"version_start":398,"version_start_type":385,"version_end":407,"version_end_type":387,"fixed_in":9},"gte4.1_lt5.15.113","cpe","5.15.113",{"version":409,"is_range":383,"range_type":406,"version_start":410,"version_start_type":385,"version_end":411,"version_end_type":387,"fixed_in":9},"gte5.16_lt6.1.30","5.16","6.1.30",{"version":413,"is_range":383,"range_type":406,"version_start":414,"version_start_type":385,"version_end":415,"version_end_type":387,"fixed_in":9},"gte6.2_lt6.3.4","6.2","6.3.4"]