[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2023-53659":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":23,"aliases":24,"duplicate_of":9,"upstream":25,"downstream":26,"duplicates":63,"related":64,"reserved_at":9,"published_at":81,"modified_at":82,"state":83,"summary":84,"references_raw":93,"kevs":116,"epss":117,"epss_history":120,"metrics":386,"affected":392},"CVE-2023-53659","In the Linux kernel, the following vulnerability has been resolved:\n\niavf: Fix out-of-bounds when setting channels on remove\n\nIf we set channels greater during iavf_remove(), and waiting reset done\nwould be timeout, then returned with error but changed num_active_queues\ndirectly, that will lead to OOB like the following logs. Because the\nnum_active_queues is greater than tx/rx_rings[] allocated actually.\n\nReproducer:\n\n  [root@host ~]# cat repro.sh\n  #!/bin/bash\n\n  pf_dbsf=\"0000:41:00.0\"\n  vf0_dbsf=\"0000:41:02.0\"\n  g_pids=()\n\n  function do_set_numvf()\n  {\n      echo 2 >/sys/bus/pci/devices/${pf_dbsf}/sriov_numvfs\n      sleep $((RANDOM%3+1))\n      echo 0 >/sys/bus/pci/devices/${pf_dbsf}/sriov_numvfs\n      sleep $((RANDOM%3+1))\n  }\n\n  function do_set_channel()\n  {\n      local nic=$(ls -1 --indicator-style=none /sys/bus/pci/devices/${vf0_dbsf}/net/)\n      [ -z \"$nic\" ] && { sleep $((RANDOM%3)) ; return 1; }\n      ifconfig $nic 192.168.18.5 netmask 255.255.255.0\n      ifconfig $nic up\n      ethtool -L $nic combined 1\n      ethtool -L $nic combined 4\n      sleep $((RANDOM%3))\n  }\n\n  function on_exit()\n  {\n      local pid\n      for pid in \"${g_pids[@]}\"; do\n          kill -0 \"$pid\" &>/dev/null && kill \"$pid\" &>/dev/null\n      done\n      g_pids=()\n  }\n\n  trap \"on_exit; exit\" EXIT\n\n  while :; do do_set_numvf ; done &\n  g_pids+=($!)\n  while :; do do_set_channel ; done &\n  g_pids+=($!)\n\n  wait\n\nResult:\n\n[ 3506.152887] iavf 0000:41:02.0: Removing device\n[ 3510.400799] ==================================================================\n[ 3510.400820] BUG: KASAN: slab-out-of-bounds in iavf_free_all_tx_resources+0x156/0x160 [iavf]\n[ 3510.400823] Read of size 8 at addr ffff88b6f9311008 by task repro.sh/55536\n[ 3510.400823]\n[ 3510.400830] CPU: 101 PID: 55536 Comm: repro.sh Kdump: loaded Tainted: G           O     --------- -t - 4.18.0 #1\n[ 3510.400832] Hardware name: Powerleader PR2008AL/H12DSi-N6, BIOS 2.0 04/09/2021\n[ 3510.400835] Call Trace:\n[ 3510.400851]  dump_stack+0x71/0xab\n[ 3510.400860]  print_address_description+0x6b/0x290\n[ 3510.400865]  ? iavf_free_all_tx_resources+0x156/0x160 [iavf]\n[ 3510.400868]  kasan_report+0x14a/0x2b0\n[ 3510.400873]  iavf_free_all_tx_resources+0x156/0x160 [iavf]\n[ 3510.400880]  iavf_remove+0x2b6/0xc70 [iavf]\n[ 3510.400884]  ? iavf_free_all_rx_resources+0x160/0x160 [iavf]\n[ 3510.400891]  ? wait_woken+0x1d0/0x1d0\n[ 3510.400895]  ? notifier_call_chain+0xc1/0x130\n[ 3510.400903]  pci_device_remove+0xa8/0x1f0\n[ 3510.400910]  device_release_driver_internal+0x1c6/0x460\n[ 3510.400916]  pci_stop_bus_device+0x101/0x150\n[ 3510.400919]  pci_stop_and_remove_bus_device+0xe/0x20\n[ 3510.400924]  pci_iov_remove_virtfn+0x187/0x420\n[ 3510.400927]  ? pci_iov_add_virtfn+0xe10/0xe10\n[ 3510.400929]  ? pci_get_subsys+0x90/0x90\n[ 3510.400932]  sriov_disable+0xed/0x3e0\n[ 3510.400936]  ? bus_find_device+0x12d/0x1a0\n[ 3510.400953]  i40e_free_vfs+0x754/0x1210 [i40e]\n[ 3510.400966]  ? i40e_reset_all_vfs+0x880/0x880 [i40e]\n[ 3510.400968]  ? pci_get_device+0x7c/0x90\n[ 3510.400970]  ? pci_get_subsys+0x90/0x90\n[ 3510.400982]  ? pci_vfs_assigned.part.7+0x144/0x210\n[ 3510.400987]  ? __mutex_lock_slowpath+0x10/0x10\n[ 3510.400996]  i40e_pci_sriov_configure+0x1fa/0x2e0 [i40e]\n[ 3510.401001]  sriov_numvfs_store+0x214/0x290\n[ 3510.401005]  ? sriov_totalvfs_show+0x30/0x30\n[ 3510.401007]  ? __mutex_lock_slowpath+0x10/0x10\n[ 3510.401011]  ? __check_object_size+0x15a/0x350\n[ 3510.401018]  kernfs_fop_write+0x280/0x3f0\n[ 3510.401022]  vfs_write+0x145/0x440\n[ 3510.401025]  ksys_write+0xab/0x160\n[ 3510.401028]  ? __ia32_sys_read+0xb0/0xb0\n[ 3510.401031]  ? fput_many+0x1a/0x120\n[ 3510.401032]  ? filp_close+0xf0/0x130\n[ 3510.401038]  do_syscall_64+0xa0/0x370\n[ 3510.401041]  ? page_fault+0x8/0x30\n[ 3510.401043]  entry_SYSCALL_64_after_hwframe+0x65/0xca\n[ 3510.401073] RIP: 0033:0x7f3a9bb842c0\n[ 3510.401079] Code: 73 01 c3 48 8b 0d d8 cb 2c 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 24 2d 00 00 75 10 b8 01 00 00 00 0f 05 \u003C48> 3d \n---truncated---",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-125","Out-of-bounds Read","The product reads data past the end, or before the beginning, of the intended buffer.","weakness","Draft","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-540","Overread Buffers",[],[],[],[],[27,29,31,33,35,37,39,41,43,45,47,49,51,53,55,57,59,61],{"_key":28},"SUSE-SU-2025:4057-1",{"_key":30},"SUSE-SU-2025:4132-1",{"_key":32},"SUSE-SU-2025:4320-1",{"_key":34},"SUSE-SU-2026:0032-1",{"_key":36},"SUSE-SU-2025:4128-1",{"_key":38},"SUSE-SU-2025:4301-1",{"_key":40},"SUSE-SU-2025:21040-1",{"_key":42},"SUSE-SU-2025:21052-1",{"_key":44},"SUSE-SU-2025:21056-1",{"_key":46},"SUSE-SU-2025:21064-1",{"_key":48},"SUSE-SU-2025:4111-1",{"_key":50},"SUSE-SU-2025:4139-1",{"_key":52},"SUSE-SU-2025:4141-1",{"_key":54},"SUSE-SU-2025:4149-1",{"_key":56},"SUSE-SU-2025:4530-1",{"_key":58},"SUSE-SU-2025:4140-1",{"_key":60},"DEBIAN-CVE-2023-53659",{"_key":62},"UBUNTU-CVE-2023-53659",[],[65,66,67,68,69,70,71,72,73,74,75,76,77,78,79,80],{"_key":28},{"_key":30},{"_key":32},{"_key":34},{"_key":36},{"_key":38},{"_key":40},{"_key":42},{"_key":44},{"_key":46},{"_key":48},{"_key":50},{"_key":52},{"_key":54},{"_key":56},{"_key":58},"2025-10-07T15:21:19.619Z","2026-05-23T15:30:12.319Z","Analyzed",{"cisa_kev":85,"cisa_ransomware":85,"cisa_vendor":9,"epss_severity":86,"epss_score":87,"severity":88,"severity_score":89,"severity_version":90,"severity_source":91,"severity_vector":92,"severity_status":83},false,"low",0.00017,"high",7.1,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",[94,100,104,108,112],{"url":95,"sources":96,"tags":98},"https://git.kernel.org/stable/c/b92defe4e8ee86996c16417ad8c804cb4395fddd",[97,91],"cve.org",[99],"Patch",{"url":101,"sources":102,"tags":103},"https://git.kernel.org/stable/c/0fb37ce6c01e17839e26d03222f0b44e6a3ed2b9",[97,91],[99],{"url":105,"sources":106,"tags":107},"https://git.kernel.org/stable/c/6e1d8f1332076a002e6d910d255aa5903d341c56",[97,91],[99],{"url":109,"sources":110,"tags":111},"https://git.kernel.org/stable/c/65ecebc9ac09427b2c65f271cd5e5bd536c3fe38",[97,91],[99],{"url":113,"sources":114,"tags":115},"https://git.kernel.org/stable/c/7c4bced3caa749ce468b0c5de711c98476b23a52",[97,91],[99],[],{"date":118,"score":87,"percentile":119},"2026-06-04",0.04443,[121,125,128,131,134,138,141,144,147,150,153,156,159,162,165,168,171,174,177,180,183,186,189,192,195,198,201,203,206,209,212,215,218,221,224,227,230,233,236,239,242,246,249,252,255,258,261,264,267,270,273,276,279,282,285,288,291,294,297,300,303,306,309,312,315,318,321,324,326,329,332,335,338,341,343,346,349,352,355,358,360,363,366,369,372,374,377,379,381,383],{"date":122,"score":123,"percentile":124},"2025-11-04",0.00024,0.04944,{"date":126,"score":123,"percentile":127},"2025-11-05",0.04947,{"date":129,"score":123,"percentile":130},"2025-11-06",0.05061,{"date":132,"score":123,"percentile":133},"2025-11-07",0.05067,{"date":135,"score":136,"percentile":137},"2025-11-08",0.00026,0.05881,{"date":139,"score":136,"percentile":140},"2025-11-09",0.05875,{"date":142,"score":136,"percentile":143},"2025-11-10",0.05852,{"date":145,"score":136,"percentile":146},"2025-11-11",0.0588,{"date":148,"score":136,"percentile":149},"2025-11-12",0.05928,{"date":151,"score":136,"percentile":152},"2025-11-13",0.05963,{"date":154,"score":136,"percentile":155},"2025-11-14",0.05995,{"date":157,"score":136,"percentile":158},"2025-11-15",0.06022,{"date":160,"score":136,"percentile":161},"2025-11-16",0.06045,{"date":163,"score":136,"percentile":164},"2025-11-17",0.06033,{"date":166,"score":136,"percentile":167},"2025-11-18",0.03598,{"date":169,"score":136,"percentile":170},"2025-11-19",0.03648,{"date":172,"score":136,"percentile":173},"2025-11-20",0.03715,{"date":175,"score":136,"percentile":176},"2025-11-21",0.06153,{"date":178,"score":136,"percentile":179},"2025-11-22",0.06102,{"date":181,"score":136,"percentile":182},"2025-11-23",0.06092,{"date":184,"score":136,"percentile":185},"2025-11-24",0.06071,{"date":187,"score":136,"percentile":188},"2025-11-25",0.06059,{"date":190,"score":136,"percentile":191},"2025-11-26",0.0608,{"date":193,"score":136,"percentile":194},"2025-11-27",0.06088,{"date":196,"score":136,"percentile":197},"2025-11-28",0.06062,{"date":199,"score":136,"percentile":200},"2025-11-29",0.06105,{"date":202,"score":136,"percentile":179},"2025-11-30",{"date":204,"score":136,"percentile":205},"2025-12-01",0.0617,{"date":207,"score":136,"percentile":208},"2025-12-02",0.06184,{"date":210,"score":136,"percentile":211},"2025-12-03",0.06198,{"date":213,"score":136,"percentile":214},"2025-12-04",0.06161,{"date":216,"score":136,"percentile":217},"2025-12-05",0.06211,{"date":219,"score":136,"percentile":220},"2025-12-06",0.06219,{"date":222,"score":136,"percentile":223},"2025-12-07",0.06226,{"date":225,"score":136,"percentile":226},"2025-12-08",0.06222,{"date":228,"score":136,"percentile":229},"2025-12-09",0.06278,{"date":231,"score":136,"percentile":232},"2025-12-10",0.0635,{"date":234,"score":136,"percentile":235},"2025-12-11",0.06341,{"date":237,"score":136,"percentile":238},"2025-12-12",0.06364,{"date":240,"score":136,"percentile":241},"2025-12-13",0.06397,{"date":243,"score":244,"percentile":245},"2025-12-14",0.00027,0.06773,{"date":247,"score":244,"percentile":248},"2025-12-15",0.06739,{"date":250,"score":244,"percentile":251},"2025-12-16",0.06763,{"date":253,"score":244,"percentile":254},"2025-12-17",0.06853,{"date":256,"score":244,"percentile":257},"2025-12-18",0.06915,{"date":259,"score":244,"percentile":260},"2025-12-19",0.06911,{"date":262,"score":244,"percentile":263},"2025-12-20",0.06908,{"date":265,"score":244,"percentile":266},"2025-12-21",0.06899,{"date":268,"score":244,"percentile":269},"2025-12-22",0.06852,{"date":271,"score":244,"percentile":272},"2025-12-23",0.06845,{"date":274,"score":244,"percentile":275},"2025-12-24",0.06869,{"date":277,"score":244,"percentile":278},"2025-12-25",0.06933,{"date":280,"score":244,"percentile":281},"2025-12-26",0.06939,{"date":283,"score":244,"percentile":284},"2025-12-27",0.0695,{"date":286,"score":244,"percentile":287},"2025-12-28",0.06937,{"date":289,"score":244,"percentile":290},"2025-12-29",0.06922,{"date":292,"score":244,"percentile":293},"2025-12-30",0.06902,{"date":295,"score":244,"percentile":296},"2025-12-31",0.06942,{"date":298,"score":244,"percentile":299},"2026-01-01",0.07,{"date":301,"score":244,"percentile":302},"2026-01-02",0.06995,{"date":304,"score":244,"percentile":305},"2026-01-03",0.06988,{"date":307,"score":244,"percentile":308},"2026-01-04",0.06849,{"date":310,"score":244,"percentile":311},"2026-01-05",0.06799,{"date":313,"score":244,"percentile":314},"2026-01-06",0.06792,{"date":316,"score":244,"percentile":317},"2026-01-07",0.06817,{"date":319,"score":244,"percentile":320},"2026-01-08",0.06874,{"date":322,"score":244,"percentile":323},"2026-01-09",0.0689,{"date":325,"score":244,"percentile":290},"2026-01-10",{"date":327,"score":244,"percentile":328},"2026-01-11",0.06909,{"date":330,"score":244,"percentile":331},"2026-01-12",0.06878,{"date":333,"score":244,"percentile":334},"2026-01-13",0.06866,{"date":336,"score":244,"percentile":337},"2026-01-14",0.0698,{"date":339,"score":244,"percentile":340},"2026-01-15",0.06986,{"date":342,"score":244,"percentile":299},"2026-01-16",{"date":344,"score":244,"percentile":345},"2026-01-17",0.0701,{"date":347,"score":244,"percentile":348},"2026-01-18",0.06985,{"date":350,"score":244,"percentile":351},"2026-01-19",0.06945,{"date":353,"score":244,"percentile":354},"2026-01-20",0.06904,{"date":356,"score":244,"percentile":357},"2026-01-21",0.06898,{"date":359,"score":244,"percentile":320},"2026-01-22",{"date":361,"score":244,"percentile":362},"2026-01-23",0.0694,{"date":364,"score":244,"percentile":365},"2026-01-24",0.06994,{"date":367,"score":244,"percentile":368},"2026-01-25",0.06971,{"date":370,"score":244,"percentile":371},"2026-01-26",0.06951,{"date":373,"score":244,"percentile":287},"2026-01-27",{"date":375,"score":244,"percentile":376},"2026-01-28",0.06913,{"date":378,"score":244,"percentile":328},"2026-01-29",{"date":380,"score":244,"percentile":290},"2026-01-30",{"date":382,"score":244,"percentile":351},"2026-01-31",{"date":384,"score":244,"percentile":385},"2026-02-01",0.06992,[387],{"source":91,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":388,"cvss_v4_0":9},{"baseScore":89,"baseSeverity":389,"vectorString":92,"impactScore":390,"exploitabilityScore":391},"HIGH",8.7,4.6,[393,429],{"ecosystem":9,"name":394,"vendor":395,"product":395,"cpe_part":396,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":397},"Linux","linux","a",[398,405,409,413,416,419,423,427],{"version":399,"is_range":400,"range_type":97,"version_start":401,"version_start_type":402,"version_end":403,"version_end_type":404,"fixed_in":9},">= 1555d83ddbb7204ef60c58aee6ca3bbef2c5e99f, \u003C b92defe4e8ee86996c16417ad8c804cb4395fddd",true,"1555d83ddbb7204ef60c58aee6ca3bbef2c5e99f","including","b92defe4e8ee86996c16417ad8c804cb4395fddd","excluding",{"version":406,"is_range":400,"range_type":97,"version_start":407,"version_start_type":402,"version_end":408,"version_end_type":404,"fixed_in":9},">= 68d4274034e618b7f190dc9fbfc4f3436a7430f4, \u003C 0fb37ce6c01e17839e26d03222f0b44e6a3ed2b9","68d4274034e618b7f190dc9fbfc4f3436a7430f4","0fb37ce6c01e17839e26d03222f0b44e6a3ed2b9",{"version":410,"is_range":400,"range_type":97,"version_start":411,"version_start_type":402,"version_end":412,"version_end_type":404,"fixed_in":9},">= 4e5e6b5d9d1334d3490326b6922a2daaf56a867f, \u003C 6e1d8f1332076a002e6d910d255aa5903d341c56","4e5e6b5d9d1334d3490326b6922a2daaf56a867f","6e1d8f1332076a002e6d910d255aa5903d341c56",{"version":414,"is_range":400,"range_type":97,"version_start":411,"version_start_type":402,"version_end":415,"version_end_type":404,"fixed_in":9},">= 4e5e6b5d9d1334d3490326b6922a2daaf56a867f, \u003C 65ecebc9ac09427b2c65f271cd5e5bd536c3fe38","65ecebc9ac09427b2c65f271cd5e5bd536c3fe38",{"version":417,"is_range":400,"range_type":97,"version_start":411,"version_start_type":402,"version_end":418,"version_end_type":404,"fixed_in":9},">= 4e5e6b5d9d1334d3490326b6922a2daaf56a867f, \u003C 7c4bced3caa749ce468b0c5de711c98476b23a52","7c4bced3caa749ce468b0c5de711c98476b23a52",{"version":420,"is_range":400,"range_type":97,"version_start":421,"version_start_type":402,"version_end":422,"version_end_type":404,"fixed_in":9},">= 5.10.82, \u003C 5.10.188","5.10.82","5.10.188",{"version":424,"is_range":400,"range_type":97,"version_start":425,"version_start_type":402,"version_end":426,"version_end_type":404,"fixed_in":9},">= 5.15.5, \u003C 5.15.123","5.15.5","5.15.123",{"version":428,"is_range":85,"range_type":97,"version_start":428,"version_start_type":402,"version_end":428,"version_end_type":402,"fixed_in":9},"5.16",{"ecosystem":9,"name":430,"vendor":395,"product":431,"cpe_part":432,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":433},"linux kernel","linux_kernel","o",[434,437,439,443,447,448,450,452,454,456,458,460,462,464],{"version":435,"is_range":400,"range_type":436,"version_start":421,"version_start_type":402,"version_end":422,"version_end_type":404,"fixed_in":9},"gte5.10.82_lt5.10.188","cpe",{"version":438,"is_range":400,"range_type":436,"version_start":425,"version_start_type":402,"version_end":426,"version_end_type":404,"fixed_in":9},"gte5.15.5_lt5.15.123",{"version":440,"is_range":400,"range_type":436,"version_start":441,"version_start_type":402,"version_end":442,"version_end_type":404,"fixed_in":9},"gte5.16.1_lt6.1.42","5.16.1","6.1.42",{"version":444,"is_range":400,"range_type":436,"version_start":445,"version_start_type":402,"version_end":446,"version_end_type":404,"fixed_in":9},"gte6.2_lt6.4.7","6.2","6.4.7",{"version":428,"is_range":85,"range_type":436,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":449,"is_range":85,"range_type":436,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc2",{"version":451,"is_range":85,"range_type":436,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc3",{"version":453,"is_range":85,"range_type":436,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc4",{"version":455,"is_range":85,"range_type":436,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc5",{"version":457,"is_range":85,"range_type":436,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc6",{"version":459,"is_range":85,"range_type":436,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc7",{"version":461,"is_range":85,"range_type":436,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"5.16:rc8",{"version":463,"is_range":85,"range_type":436,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.5:rc1",{"version":465,"is_range":85,"range_type":436,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.5:rc2"]