CVE-2023-53535: 
Linux Kernel vulnerability analysis and mitigation

CVE-2023-53535 is a vulnerability in the Linux kernel's bcmgenet network driver, discovered and disclosed on October 4, 2025. The vulnerability affects the packet handling mechanism where oversized packets from hardware could exceed the nominal 2KiB buffer size allocated for SKBs (Socket Buffers) (NVD CVE Details).

The vulnerability exists in the bcmgenet network driver's packet handling mechanism. When hardware sends packets that exceed the nominal 2KiB buffer size allocated for Socket Buffers (SKBs), it could trigger an skboverpanic() condition. According to Red Hat's assessment, this vulnerability has been assigned a CVSS v3.1 score of 7.0 with the vector CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H (Red Hat Security).

The vulnerability could lead to system instability when processing oversized network packets in the bcmgenet driver. If exploited, it could cause the system to panic when handling packets that exceed the allocated buffer size, potentially resulting in system crashes or denial of service conditions (NVD CVE Details).

A fix has been implemented that adds an early check to drop oversized packets before they can trigger the skboverpanic() condition, allowing the system to continue processing subsequent packets normally. The patch has been integrated into the Linux kernel (NVD CVE Details).