CVE-2023-53989

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains an issue related to a Virtual Address (VA) range sanity check within the arm64 architecture. Specifically, the checks in create mapping noalloc() and update mapping prot() functions had a condition that was historically inaccurate and did not effectively prevent unintended behavior. The initial condition checked if the virtual address was less than VMALLOC START. Later changes introduced a condition checking if the virtual address was greater than or equal to PAGE END and less than VMALLOC START. This condition was identified as an error, as it unnecessarily restricted mappings in the KASAN shadow region and module region. The fix corrects the condition to check against PAGE OFFSET, simplifying the logic and aligning it with the intended purpose of identifying addresses outside the kernel range.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.