CVE-2023-53011

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved. The issue is related to the implementation of the dwmac5 driver, where not all safety features were enabled by default for certain platforms. This resulted in a NULL pointer dereference when the automotive safety package bit is set in the hardware features register. The problem occurred because only specific platforms had software support for safety features, and for other platforms, the safety feature callback was called without a defined safety feat cfg structure.

Recommendations To resolve the issue, go back to the original behavior and enable all safety features by default if the automotive safety package is supported in hardware, unless a safety feat cfg is provided that specifies a subset of features for a particular platform. At the moment, there is no information about a newer version that contains a fix for this vulnerability.