{"id":"CVE-2023-53476","summary":"iw_cxgb4: Fix potential NULL dereference in c4iw_fill_res_cm_id_entry()","details":"In the Linux kernel, the following vulnerability has been resolved:\n\niw_cxgb4: Fix potential NULL dereference in c4iw_fill_res_cm_id_entry()\n\nThis condition needs to match the previous \"if (epcp-\u003estate == LISTEN) {\"\nexactly to avoid a NULL dereference of either \"listen_ep\" or \"ep\". The\nproblem is that \"epcp\" has been re-assigned so just testing\n\"if (epcp-\u003estate == LISTEN) {\" a second time is not sufficient.","modified":"2026-05-28T03:55:31.620684422Z","published":"2025-10-01T11:42:45.499Z","related":["SUSE-SU-2025:03615-1","SUSE-SU-2025:03628-1","SUSE-SU-2025:3716-1","SUSE-SU-2025:3761-1","SUSE-SU-2025:4189-1"],"database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53476.json","cna_assigner":"Linux"},"references":[{"type":"WEB","url":"https://git.kernel.org/stable/c/24278dc380aab6a1aef0a75317f57ad4c2453cf6"},{"type":"WEB","url":"https://git.kernel.org/stable/c/4ca446b127c568b59cb8d9748b6f70499624bb18"},{"type":"WEB","url":"https://git.kernel.org/stable/c/76e0396313c79ecd0df44ee3c18745cfac52b3e6"},{"type":"WEB","url":"https://git.kernel.org/stable/c/dd55240e4364d64befcc575b0d33091881524f42"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/53xxx/CVE-2023-53476.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2023-53476"},{"type":"PACKAGE","url":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git","events":[{"introduced":"116aeb8873712ea559d26b0d9d88147af5c88db5"},{"fixed":"76e0396313c79ecd0df44ee3c18745cfac52b3e6"},{"fixed":"24278dc380aab6a1aef0a75317f57ad4c2453cf6"},{"fixed":"dd55240e4364d64befcc575b0d33091881524f42"},{"fixed":"4ca446b127c568b59cb8d9748b6f70499624bb18"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53476.json"}},{"package":{"name":"Kernel","ecosystem":"Linux"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"4.18.0"},{"fixed":"5.15.99"}]},{"type":"ECOSYSTEM","events":[{"introduced":"5.16.0"},{"fixed":"6.1.16"}]},{"type":"ECOSYSTEM","events":[{"introduced":"6.2.0"},{"fixed":"6.2.3"}]}],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53476.json"}}],"schema_version":"1.7.5"}