AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2023-53043: In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: sc7280: Mark PCIe controller as c

mediumvulnerability

security

Source: NVD/CVE DatabaseMay 2, 2025CVE-2023-53043

Summary

CVE-2023-53043 is a bug in the Linux kernel where a PCIe controller (a hardware component that manages data transfer between a computer and devices connected via PCIe, a high-speed connection standard) was not marked as cache coherent (meaning the system wasn't told that data in the fast-access memory matches data in main memory). This could cause data corruption when the kernel tried to manage memory operations. The fix marks the PCIe node with the dma-coherent flag to tell the system that PCIe devices maintain cache coherency.

Solution / Mitigation

Mark the PCIe node as dma-coherent in the device tree configuration. Patches are available at: https://git.kernel.org/stable/c/267b899375bf38944d915c9654d6eb434edad0ce, https://git.kernel.org/stable/c/8a63441e83724fee1ef3fd37b237d40d90780766, and https://git.kernel.org/stable/c/e43bba938e2c9104bb4f8bc417ac4d7bb29755e1

Vulnerability Details

CVSS Score

5.5(medium)

EPSS (30-day exploit probability)

EPSS: 0.0%

Classification

Attack SophisticationModerate

Original source: https://nvd.nist.gov/vuln/detail/CVE-2023-53043

First tracked: February 15, 2026 at 08:52 PM

Classified by LLM (prompt v3) · confidence: 95%