PT-2023-1164 · Linux+8 · Linux Kernel+8

Kyle Zeng

·

Publicado

2023-01-01

·

Atualizado

2025-03-20

·

CVE-2023-23455

CVSS v3.1

5.5

Média

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.5
Description The issue is related to the atm tc enqueue function in the Linux kernel, which can cause a denial of service due to type confusion. This confusion occurs because non-negative numbers can sometimes indicate a TC ACT SHOT condition rather than valid classification results.
Recommendations For Linux kernel versions prior to 6.1.5, update to version 6.1.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the atm tc enqueue function in net/sched/sch atm.c to minimize the risk of exploitation.

Correção

DoS

Type Confusion

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-843CWE-136

Identificadores relacionados

ALSA-2023:7077
ALT-PU-2023-1064
ALT-PU-2023-1126
ALT-PU-2023-1684
ALT-PU-2023-1741
ALT-PU-2023-1814
ALT-PU-2023-4894
ALT-PU-2024-4263
ALT-PU-2024-4843
AZL-13007
BDU:2023-00378
CESA-2023_6901
CESA-2023_7077
CVE-2023-23455
DLA-3349-1
DLA-3403-1
DSA-5324-1
MGASA-2023-0007
MGASA-2023-0008
OESA-2023-1071
OESA-2023-1072
OESA-2023-1073
OESA-2023-1074
OPENSUSE-SU-2023_0152-1
OPENSUSE-SU-2023_0433-1
OPENSUSE-SU-2023_0488-1
OPENSUSE-SU-2023_0774-1
RHSA-2023:6901
RHSA-2023:7077
RHSA-2023_6901
RHSA-2023_7077
RHSA-2024:0575
RHSA-2024:0724
SUSE-SU-2023:0152-1
SUSE-SU-2023:0406-1
SUSE-SU-2023:0420-1
SUSE-SU-2023:0433-1
SUSE-SU-2023:0488-1
SUSE-SU-2023:0591-1
SUSE-SU-2023:0774-1
SUSE-SU-2023:1608-1
SUSE-SU-2023:1801-1
SUSE-SU-2023:1803-1
SUSE-SU-2023:1848-1
SUSE-SU-2023:1894-1
SUSE-SU-2023:2232-1
SUSE-SU-2023:2506-1
SUSE-SU-2023:2660-1
SUSE-SU-2023:2679-1
SUSE-SU-2023:2680-1
SUSE-SU-2023:2686-1
SUSE-SU-2023:2694-1
SUSE-SU-2023:2695-1
SUSE-SU-2023:2702-1
SUSE-SU-2023:2708-1
SUSE-SU-2023:2710-1
SUSE-SU-2023:2714-1
SUSE-SU-2023:2718-1
SUSE-SU-2023:2721-1
SUSE-SU-2023:2727-1
SUSE-SU-2023:2735-1
SUSE-SU-2023:2741-1
SUSE-SU-2023:2743-1
SUSE-SU-2023:2755-1
SUSE-SU-2023:2805-1
SUSE-SU-2023:2809-1
USN-5915-1
USN-5917-1
USN-5924-1
USN-5927-1
USN-5934-1
USN-5939-1
USN-5940-1
USN-5951-1
USN-5975-1
USN-5981-1
USN-5982-1
USN-5984-1
USN-5987-1
USN-5991-1
USN-6000-1
USN-6001-1
USN-6004-1
USN-6009-1
USN-6013-1
USN-6014-1
USN-6030-1
USN-6071-1
USN-6072-1
USN-6079-1
USN-6091-1
USN-6096-1

Produtos afetados

Alt Linux
Almalinux
Astra Linux
Centos
Linuxmint
Linux Kernel
Red Hat
Suse
Ubuntu